Vendor

Ouroboros-Ai

1 brief RSS

Ouroboros-AI Remote Code Execution via Malicious .env File

A remote code execution vulnerability exists in Ouroboros-AI versions prior to 0.39.0, enabling attackers to inject malicious scripts via CLI path variables within a cloned repository's .env file, leading to arbitrary code execution when Ouroboros commands are executed.

ouroboros-ai rce vulnerability supply_chain

2r 1t 19h ago