Roo Code Security Vulnerabilities and Issues — Roo Code CVE List

Lucene search

RoocodeRoo Code

9 matches found

CVE•added 2025/09/05 11:15 p.m.•19 views

CVE-2025-58371

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. In versions 3.26.6 and below, a Github workflow used unsanitized pull request metadata in a privileged context, allowing an attacker to craft malicious input and achieve Remote Code Execution (RCE) on the Actions runner...

9.9CVSS7.5AI score0.00269EPSS

CVE•added 2025/06/27 10:15 p.m.•11 views

CVE-2025-53098

Roo Code is an AI-powered autonomous coding agent. The project-specific MCP configuration for the Roo Code agent is stored in the .roo/mcp.json file within the VS Code workspace. Because the MCP configuration format allows for execution of arbitrary commands, prior to version 3.20.3, it would have ...

8.1CVSS7.3AI score0.00062EPSS

CVE•added 2025/06/27 10:15 p.m.•10 views

CVE-2025-53097

Roo Code is an AI-powered autonomous coding agent. Prior to version 3.20.3, there was an issue where the Roo Code agent's search_files tool did not respect the setting to disable reads outside of the VS Code workspace. This means that an attacker who was able to inject a prompt into the agent could...

7.5CVSS6.7AI score0.00077EPSS

CVE•added 2025/07/07 6:15 p.m.•10 views

CVE-2025-53536

Roo Code is an AI-powered autonomous coding agent. Prior to 3.22.6, if the victim had "Write" auto-approved, an attacker with the ability to submit prompts to the agent could write to VS Code settings files and trigger code execution. There were multiple ways to achieve that. One example is with th...

8.1CVSS7.1AI score0.00153EPSS

CVE•added 2025/09/05 11:15 p.m.•8 views

CVE-2025-58372

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. Versions 3.25.23 and below contain a vulnerability where certain VS Code workspace configuration files (.code-workspace) are not protected in the same way as the .vscode folder. If the agent was configured to auto-appro...

9.8CVSS7.4AI score0.0009EPSS

CVE•added 2025/09/05 11:15 p.m.•7 views

CVE-2025-58370

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. Versions below 3.26.0 contain a vulnerability in the command parsing logic where the Bash parameter expansion and indirect reference were not handled correctly. If the agent was configured to auto-approve execution of c...

8.1CVSS7.2AI score0.00139EPSS

CVE•added 2025/09/05 11:15 p.m.•6 views

CVE-2025-58373

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. Versions 3.25.23 and below contain a vulnerability where .rooignore protections could be bypassed using symlinks. This allows an attacker with write access to the workspace to trick the extension into reading files that...

6.5CVSS6.2AI score0.00021EPSS

CVE•added 2025/07/23 9:15 p.m.•5 views

CVE-2025-54377

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. In versions 3.23.18 and below, RooCode does not validate line breaks (\n) in its command input, allowing potential bypass of the allow-list mechanism. The project appears to lack parsing or validation logic to prevent m...

7.8CVSS7.2AI score0.00063EPSS

CVE•added 2025/09/06 3:15 a.m.•5 views

CVE-2025-58374

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. Versions 3.25.23 and below contain a default list of allowed commands that do not need manual approval if auto-approve is enabled, and npm install is included in that list. Because npm install executes lifecycle scripts...

7.8CVSS7.6AI score0.00032EPSS