CVE-2026-41512

Published: Mag 08, 2026 Last Modified: Mag 09, 2026
ExploitDB:
Other exploit source:
Google Dorks:
CRITICAL 9,9
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: changed
Confidentiality: high
Integrity: high
Availability: high

Description

AI Translation Available

ai-scanner is an AI model safety scanner built on NVIDIA garak. From version 1.0.0 to before version 1.4.1, there is a remote code execution vulnerability via JavaScript injection in `BrowserAutomation::PlaywrightService`. This issue has been patched in version 1.4.1.

94

Improper Control of Generation of Code ('Code Injection')

Draft
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Access Control Integrity Confidentiality Availability Non-Repudiation
Potential Impacts:
Bypass Protection Mechanism Gain Privileges Or Assume Identity Execute Unauthorized Code Or Commands Hide Activities
Applicable Platforms
Languages: Interpreted
Technologies: AI/ML
Likelihood of Exploit: Medium
View CWE Details
https://github.com/0din-ai/ai-scanner/security/advisories/G…
https://github.com/0din-ai/ai-scanner/security/advisories/GHSA-r27j-xxgx-f5vr
https://github.com/0din-ai/ai-scanner/releases/tag/v1.4.1
https://github.com/0din-ai/ai-scanner/releases/tag/v1.4.1
https://github.com/0din-ai/ai-scanner/security/advisories/G…
https://github.com/0din-ai/ai-scanner/security/advisories/GHSA-r27j-xxgx-f5vr