CRITICAL
simonw
CVE published 2026-05-12
CVE-2026-31236
CVE-2026-31236 is a critical code injection vulnerability in the llm CLI tool, specifically affecting versions up to 0.27.1. The vulnerability is caused by the unsafe use of the exec() function when handling the --functions command-line argument, which allows users to provide custom Python function definitions. An attacker can exploit this by crafting a malicious llm command with arbitrary Python code in [truncated]