The ai_cmd utility executes with full root permissions....
High severity
Unreviewed
Published
Jun 4, 2026
to the GitHub Advisory Database
•
Updated Jun 4, 2026
Description
Published by the National Vulnerability Database
Jun 4, 2026
Published to the GitHub Advisory Database
Jun 4, 2026
Last updated
Jun 4, 2026
The ai_cmd utility executes with full root permissions. It pipes socket inputs directly to popen(), paving the way for unauthenticated users to execute arbitrary root commands.
References