Flaw in Gemini CLI coding tool could allow hackers to run nasty commands
Researchers discovered a flaw in Google's Gemini CLI coding tool that allowed attackers to run malicious commands, potentially leading to data exfiltration. Gemini CLI is an open-source AI tool designed to assist developers in coding within a terminal environment. Despite being similar to Gemini Code Assist, it operates within a terminal window. Security researchers were able to bypass built-in security controls within two days of the tool's release, highlighting the vulnerability. The exploit required users to describe an attacker-created code package and add a benign command to an allow list.
Ars Technica•