1. Critical AI Agent Flaw Grants Authenticated Users Arbitrary System Command Execution
A critical vulnerability in an AI agent system allows authenticated users to execute arbitrary system commands by manipulating the agent's tool execution capabilities. The flaw, discovered by researcher Casco, exploits the agent's `Bash` tool functionality, enabling attackers with valid credentials to bypass intended r...