80 matches found
CVE-2025-9959
CVE-2025-9959 concerns smolagents, a Python agents library. The root issue is incomplete validation of dunder attributes, enabling an attacker to escape the Local Python execution environment sandbox when a Prompt Injection is used to coax the agent into creating malicious code. Several connected...
CVE-2025-9959 Sandbox escape in smolagents Local Python execution environment via dunder attributes
Incomplete validation of dunder attributes allows an attacker to escape from the Local Python execution environment sandbox, enforced by smolagents. The attack requires a Prompt Injection in order to trick the agent to create malicious code...
CVE-2025-9959 Sandbox escape in smolagents Local Python execution environment via dunder attributes
Incomplete validation of dunder attributes allows an attacker to escape from the Local Python execution environment sandbox, enforced by smolagents. The attack requires a Prompt Injection in order to trick the agent to create malicious code...
smolagents 代码注入漏洞
smolagents is a basic library for agents open-sourced by Hugging Face. A code injection vulnerability exists in smolagents that stems from an incomplete validation of the dunder attribute, which could lead to an escape from the Local Python execution environment sandbox...
CVE-2025-5120
A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...
agentengine (>=0.1.5 <=0.1.8), iflow-mcp-maxim-saplin-mcp-safe-local-python-executor (=0.1.0) +11 more potentially affected by CVE-2025-5120 via smolagents (>=0.1.3 <=1.16.1)
smolagents PYPI version =0.1.3, =0.1.5, =0.1.0, =0.1.1, =0.1.1, =0.1.0, =0.16.0, =0.0.1.dev0, =0.0.1, =0.3.0, =0.3.7 Source cves: CVE-2025-5120 Source advisory: OSV:GHSA-6V92-R5MX-H5FX...
smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module
A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...
GHSA-6V92-R5MX-H5FX smolagents has Sandbox Escape Vulnerability in the local_python_executor.py Module
A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...
Arbitrary Code Injection
Overview smolagents is a 🤗 smolagents: a barebones library for agents. Agents write python code to call tools or orchestrate other agents. Affected versions of this package are vulnerable to Arbitrary Code Injection via the evaluatename function in the localpythonexecutor.py file. An attacker can...
agentengine (>=0.1.5 <=0.1.8), iflow-mcp-maxim-saplin-mcp-safe-local-python-executor (=0.1.0) +10 more potentially affected by CVE-2025-5120 via smolagents (>=1.12.0 <=1.16.1)
smolagents PYPI version =1.12.0, =0.1.5, =0.1.0, =0.1.1, =0.1.1, =0.1.0, =0.16.0, =0.0.1.dev0, =0.0.1, =0.3.0, =0.3.7 Source cves: CVE-2025-5120 Source advisory: SNYK:PYTHON-SMOLAGENTS-11023289...
CVE-2025-5120 Sandbox Escape Vulnerability in huggingface/smolagents
A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...
CVE-2025-5120
The CVE-2025-5120 vulnerability affects huggingface/smolagents prior to 1.17.0, due to flaws in the local_python_executor.py sandbox that inadequately restrict Python execution. This allows attackers to bypass the restricted execution environment and achieve remote code execution by exploiting wh...
CVE-2025-5120 Sandbox Escape Vulnerability in huggingface/smolagents
A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution RCE. The vulnerability stems from the localpythonexecutor.py module, which inadequately restricts Python code...
smolagents 代码注入漏洞
smolagents is a basic library for agents open-sourced by Hugging Face. A code injection vulnerability exists in smolagents version 1.14.0, which stems from an under-restricted localpythonexecutor.py module that could lead to remote code execution...
XPath Injection in search_item_ctrl_f Function - Hugging Face Smolagents v1.20.0
The searchitemctrlf function in the Hugging Face Smolagents library is vulnerable to XPath injection. The function simply concatenates user input into an XPath query without sanitizing or escaping the input. Vulnerable Code Location: File: src/smolagents-1.20.0/smolagents/visionwebbrowser.py...
Python sandbox escape leading to Remote Code Execution (RCE)
Smolagents python sandbox escape leading to Remote Code Execution RCE Summary Smolagents is a barebones library for building agents that “ think in Python code ”—generating and executing Python as part of their reasoning process. Given this design, secure code execution is a critical backbone of...
a2a-smol-adapter (=0.1.0), agent-lifecycle-toolkit (>=0.2.1 <=0.10.1) +102 more potentially affected by unknown CVE via smolagents (>=1.12.0 <=1.26.0)
smolagents PYPI version =1.12.0, =0.2.1, =0.1.0, =0.1.5, =0.1.6, =0.0.1, =0.3.4, =1.0.0, =1.0.1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-SMOLAGENTS-8688411...
Arbitrary Code Execution
Overview smolagents is a 🤗 smolagents: a barebones library for agents. Agents write python code to call tools or orchestrate other agents. Affected versions of this package are vulnerable to Arbitrary Code Execution due to allowing access to Python builtins in localpythonexecutor.py, and only...
Arbitrary Code Execution
Overview smolagents is a 🤗 smolagents: a barebones library for agents. Agents write python code to call tools or orchestrate other agents. Affected versions of this package are vulnerable to Arbitrary Code Execution in the importmodules function, which can import arbitrary built-in modules such a...
a2a-smol-adapter (=0.1.0), agent-lifecycle-toolkit (>=0.2.1 <=0.10.1) +102 more potentially affected by unknown CVE via smolagents (>=1.12.0 <=1.26.0)
smolagents PYPI version =1.12.0, =0.2.1, =0.1.0, =0.1.5, =0.1.6, =0.0.1, =0.3.4, =1.0.0, =1.0.1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-SMOLAGENTS-8688410...