Topic

#cve-2026-41208

1 article exploring cve-2026-41208. Expert insights and analysis from our editorial team.

Showing 1–1 of 1 articles
Related topics:
security paperclip agent-orchestration shell-injection trust-boundary api-security

Articles

Newest first
Security

Paperclip CVE-2026-41208: Agents Can Mutate Their Own provisionCommand Into Server-Side Shell Injection

Any valid Paperclip Agent API key lets a holder overwrite provisionCommand so the server executes arbitrary shell commands during workspace provisioning without admin access.
Browse All Topics