CVE-2026-10174 Aider-AI CVE debrief

Who should care

Organizations using Aider-AI Aider 0.86.3 for automated coding assistance, particularly those relying on git-commit-verify for commit integrity protection. Security teams managing pre-commit hook policies and developers using Aider in CI/CD pipelines.

Technical summary

The vulnerability exists in aider/args.py within the Pre-commit Hook Handler component of Aider-AI Aider 0.86.3. Manipulation of the git-commit-verify argument leads to protection mechanism failure (CWE-693). The attack vector is network-based with low attack complexity, though low privileges are required. The exploit is publicly available. The vendor was notified through GitHub issue 5057 but had not responded as of the CVE publication date of 2026-05-31.

Defensive priority

review

Recommended defensive actions

• Review pre-commit hook configurations in Aider deployments, particularly git-commit-verify settings
• Monitor GitHub issue 5057 for vendor response and patch availability
• Restrict access to Aider configuration files to authorized users only
• Consider disabling or manually verifying commits when using Aider 0.86.3 until patched
• Audit commit verification workflows for bypass opportunities

Evidence notes

The vulnerability was reported through VulDB (submit/819901) and assigned CVE-2026-10174. The affected component is identified as the Pre-commit Hook Handler in aider/args.py. The git-commit-verify argument is the specific control that fails. The vendor was notified via GitHub issue 5057 prior to CVE publication. The CVSS 4.0 vector indicates network accessibility with required privileges (PR:L), limiting direct anonymous exploitation.

Official resources