CVE-2025-55345

Using Codex CLI in workspace-write mode inside a malicious context (repo, directory, etc) could lead to arbitrary file overwrite and potentially remote code execution due to symlinks being followed outside the allowed current working directory.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/openai/codex/pull/1705
https://research.jfrog.com/vulnerabilities/codex-cli-symlink-arbitrary-file-overwrite-jfsa-2025-001378631/
https://research.jfrog.com/vulnerabilities/codex-cli-symlink-arbitrary-file-overwrite-jfsa-2025-001378631/

Configurations

No configuration.

History

13 Aug 2025, 20:15

Type	Values Removed	Values Added
References	~~() https://research.jfrog.com/vulnerabilities/codex-cli-symlink-arbitrary-file-overwrite-jfsa-2025-001378631/ -~~	() https://research.jfrog.com/vulnerabilities/codex-cli-symlink-arbitrary-file-overwrite-jfsa-2025-001378631/ -

13 Aug 2025, 17:33

Type	Values Removed	Values Added
Summary		(es) El uso de Codex CLI en modo de escritura en el espacio de trabajo dentro de un contexto malicioso (repositorio, directorio, etc.) podría provocar la sobrescritura arbitraria de archivos y potencialmente la ejecución remota de código debido a que se siguen enlaces simbólicos fuera del directorio de trabajo actual permitido.

13 Aug 2025, 09:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-13 09:15

Updated : 2025-08-13 20:15

NVD link : CVE-2025-55345

Mitre link : CVE-2025-55345

CVE.ORG link : CVE-2025-55345

JSON object : View

Products Affected

No product.

CWE

CWE-61

UNIX Symbolic Link (Symlink) Following

8.8 /10