Agents
CVE-2026-41208: Paperclip AI Agent Orchestration Platform — Agent Self-Update Enables RCE (CVSS 8.8)
A high-severity privilege escalation vulnerability (CVSS 8.8) in Paperclip's AI agent orchestration platform allows any agent with an API key to achieve remote code execution on the server host. The flaw stems from agents being permitted to update their own adapterConfig via the /agents/:id API endpoint, where the provisionCommand field is subsequently executed by the server runtime during workspace provisioning. An attacker can inject arbitrary shell commands through this mechanism. Fixed in @paperclipai/server version 2026.416.0. This represents a new attack class where the agent itself is the exploitation vector rather than an external attacker.
↳ Follow the thread