PatchSiren

simonw CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL simonw CVE published 2026-05-12

CVE-2026-31236

CVE-2026-31236 is a critical code injection vulnerability in the llm CLI tool, specifically affecting versions up to 0.27.1. The vulnerability is caused by the unsafe use of the exec() function when handling the --functions command-line argument, which allows users to provide custom Python function definitions. An attacker can exploit this by crafting a malicious llm command with arbitrary Python code in [truncated]