Security Advisory

CVE-2025-9959

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-03 16:53:46

Last updated 2025-09-03 18:48:11

Assigner JFROG

State PUBLISHED

Description

Incomplete validation of dunder attributes allows an attacker to escape from the Local Python execution environment sandbox, enforced by smolagents. The attack requires a Prompt Injection in order to trick the agent to create malicious code.

← Browse all CVEs View on cve.org ↗