Vulnerabilities

CVE-2025-55345

by Fred · 13/08/2025

Using Codex CLI in workspace-write mode inside a malicious context (repo, directory, etc) could lead to arbitrary file overwrite and potentially remote code execution due to symlinks being followed outside the allowed current working directory.

More information : https://github.com/openai/codex/pull/1705

Similar

Tags: Cybersecurity Alert