Lucene search
+L

80 matches found

CVE
CVE
added 2025/09/03 4:53 p.m.15 views

CVE-2025-9959

CVE-2025-9959 concerns smolagents, a Python agents library. The root issue is incomplete validation of dunder attributes, enabling an attacker to escape the Local Python execution environment sandbox when a Prompt Injection is used to coax the agent into creating malicious code. Several connected...

7.6CVSS6.7AI score0.00291EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/03 4:53 p.m.22 views

CVE-2025-9959 Sandbox escape in smolagents Local Python execution environment via dunder attributes

Incomplete validation of dunder attributes allows an attacker to escape from the Local Python execution environment sandbox, enforced by smolagents. The attack requires a Prompt Injection in order to trick the agent to create malicious code...

7.6CVSS0.00291EPSS
Exploits0References2
OSV
OSV
added 2025/09/03 4:53 p.m.6 views

CVE-2025-9959 Sandbox escape in smolagents Local Python execution environment via dunder attributes

Incomplete validation of dunder attributes allows an attacker to escape from the Local Python execution environment sandbox, enforced by smolagents. The attack requires a Prompt Injection in order to trick the agent to create malicious code...

7.6CVSS6.8AI score0.00291EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.7 views

smolagents 代码注入漏洞

smolagents is a basic library for agents open-sourced by Hugging Face. A code injection vulnerability exists in smolagents that stems from an incomplete validation of the dunder attribute, which could lead to an escape from the Local Python execution environment sandbox...

7.6CVSS7.4AI score0.00291EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/29 10:34 a.m.17 views

CVE-2025-5120

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...

10CVSS7.9AI score0.18654EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2025/07/27 9:30 a.m.5 views

agentengine (>=0.1.5 <=0.1.8), iflow-mcp-maxim-saplin-mcp-safe-local-python-executor (=0.1.0) +11 more potentially affected by CVE-2025-5120 via smolagents (>=0.1.3 <=1.16.1)

smolagents PYPI version =0.1.3, =0.1.5, =0.1.0, =0.1.1, =0.1.1, =0.1.0, =0.16.0, =0.0.1.dev0, =0.0.1, =0.3.0, =0.3.7 Source cves: CVE-2025-5120 Source advisory: OSV:GHSA-6V92-R5MX-H5FX...

10CVSS7AI score0.18654EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2025/07/27 9:30 a.m.12 views

smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...

10CVSS7.9AI score0.18654EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/07/27 9:30 a.m.7 views

GHSA-6V92-R5MX-H5FX smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...

9.9CVSS7.9AI score0.18654EPSS
Exploits1References4
Snyk
Snyk
added 2025/07/27 8:42 a.m.3 views

Arbitrary Code Injection

Overview smolagents is a 🤗 smolagents: a barebones library for agents. Agents write python code to call tools or orchestrate other agents. Affected versions of this package are vulnerable to Arbitrary Code Injection via the evaluatename function in the localpythonexecutor.py file. An attacker can...

10CVSS8.3AI score0.18654EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2025/07/27 8:42 a.m.4 views

agentengine (>=0.1.5 <=0.1.8), iflow-mcp-maxim-saplin-mcp-safe-local-python-executor (=0.1.0) +10 more potentially affected by CVE-2025-5120 via smolagents (>=1.12.0 <=1.16.1)

smolagents PYPI version =1.12.0, =0.1.5, =0.1.0, =0.1.1, =0.1.1, =0.1.0, =0.16.0, =0.0.1.dev0, =0.0.1, =0.3.0, =0.3.7 Source cves: CVE-2025-5120 Source advisory: SNYK:PYTHON-SMOLAGENTS-11023289...

10CVSS7AI score0.18654EPSS
Exploits1
OSV
OSV
added 2025/07/27 7:57 a.m.4 views

CVE-2025-5120 Sandbox Escape Vulnerability in huggingface/smolagents

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...

7.6CVSS7.9AI score0.18654EPSS
Exploits1References4
CVE
CVE
added 2025/07/27 7:57 a.m.64 views

CVE-2025-5120

The CVE-2025-5120 vulnerability affects huggingface/smolagents prior to 1.17.0, due to flaws in the local_python_executor.py sandbox that inadequately restrict Python execution. This allows attackers to bypass the restricted execution environment and achieve remote code execution by exploiting wh...

10CVSS8AI score0.18654EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/27 7:57 a.m.1 views

CVE-2025-5120 Sandbox Escape Vulnerability in huggingface/smolagents

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...

7.6CVSS7.9AI score0.18654EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/07/27 12:0 a.m.6 views

smolagents 代码注入漏洞

smolagents is a basic library for agents open-sourced by Hugging Face. A code injection vulnerability exists in smolagents version 1.14.0, which stems from an under-restricted localpythonexecutor.py module that could lead to remote code execution...

10CVSS8AI score0.18654EPSS
Exploits1References3
Huntr
Huntr
added 2025/07/16 9:46 p.m.10 views

XPath Injection in search_item_ctrl_f Function - Hugging Face Smolagents v1.20.0

The searchitemctrlf function in the Hugging Face Smolagents library is vulnerable to XPath injection. The function simply concatenates user input into an XPath query without sanitizing or escaping the input. Vulnerable Code Location: File: src/smolagents-1.20.0/smolagents/visionwebbrowser.py...

5.4CVSS6AI score0.00258EPSS
Exploits2
Huntr
Huntr
added 2025/04/21 7:56 a.m.8 views

Python sandbox escape leading to Remote Code Execution (RCE)

Smolagents python sandbox escape leading to Remote Code Execution RCE Summary Smolagents is a barebones library for building agents that “ think in Python code ”—generating and executing Python as part of their reasoning process. Given this design, secure code execution is a critical backbone of...

10CVSS8.6AI score0.18654EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/02/01 6:45 a.m.4 views

a2a-smol-adapter (=0.1.0), agent-lifecycle-toolkit (>=0.2.1 <=0.10.1) +102 more potentially affected by unknown CVE via smolagents (>=1.12.0 <=1.26.0)

smolagents PYPI version =1.12.0, =0.2.1, =0.1.0, =0.1.5, =0.1.6, =0.0.1, =0.3.4, =1.0.0, =1.0.1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-SMOLAGENTS-8688411...

5.7AI score
Exploits0
Snyk
Snyk
added 2025/02/01 6:45 a.m.4 views

Arbitrary Code Execution

Overview smolagents is a 🤗 smolagents: a barebones library for agents. Agents write python code to call tools or orchestrate other agents. Affected versions of this package are vulnerable to Arbitrary Code Execution due to allowing access to Python builtins in localpythonexecutor.py, and only...

8.6CVSS7.5AI score
Exploits0References3
Snyk
Snyk
added 2025/02/01 6:44 a.m.1 views

Arbitrary Code Execution

Overview smolagents is a 🤗 smolagents: a barebones library for agents. Agents write python code to call tools or orchestrate other agents. Affected versions of this package are vulnerable to Arbitrary Code Execution in the importmodules function, which can import arbitrary built-in modules such a...

8.5CVSS7.8AI score
Exploits0References3
vulnersOsv
vulnersOsv
added 2025/02/01 6:44 a.m.4 views

a2a-smol-adapter (=0.1.0), agent-lifecycle-toolkit (>=0.2.1 <=0.10.1) +102 more potentially affected by unknown CVE via smolagents (>=1.12.0 <=1.26.0)

smolagents PYPI version =1.12.0, =0.2.1, =0.1.0, =0.1.5, =0.1.6, =0.0.1, =0.3.4, =1.0.0, =1.0.1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-SMOLAGENTS-8688410...

5.7AI score
Exploits0
Rows per page
Query Builder