HIGH
Deerflow
CVE published 2026-04-01
CVE-2026-34430
CVE-2026-34430 is a high-severity sandbox escape in ByteDance DeerFlow's bash tool handling. According to the published description, incomplete shell-semantics modeling and regex-based validation can be bypassed with shell features such as directory changes and relative paths, letting an attacker read or modify files outside the sandbox and ultimately trigger arbitrary command execution on the host throug [truncated]