CVE-2025-53536HIGH 8.1EPSS p46.6%

CVE-2025-53536CVE-2025-53536

Description

Roo Code is an AI-powered autonomous coding agent. Prior to 3.22.6, if the victim had "Write" auto-approved, an attacker with the ability to submit prompts to the agent could write to VS Code settings files and trigger code execution. There were multiple ways to achieve that. One example is with the php.validate.executablePath setting which lets you set the path for the php executable for syntax validation. The attacker could have written the path to an arbitrary command there and then created a php file to trigger it. This vulnerability is fixed in 3.22.6.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.66% probability of exploitation · percentile 46.6% · 2026-06-19T12:03:05Z
Published2025-07-07
Last modified2025-09-15

Underlying weaknesses· 1

CWE-552

References

  1. https://github.com/RooCodeInc/Roo-Code/commit/1be6fce1a6864ae63e8160b0666db2c647f2dbba
  2. https://github.com/RooCodeInc/Roo-Code/commit/3993406ebdc0553a32ef391a799a4fb124930a1c
  3. https://github.com/RooCodeInc/Roo-Code/security/advisories/GHSA-3765-5vjr-qjgm

1

TypeTargetConfidenceTier
WeaknessFiles or Directories Accessible to External Partiescwe-5520%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-58372
CVE
CVE-2025-53098
CVE
CVE-2025-65946
CVE
CVE-2025-58370
CVE
CVE-2025-57771
CVE
CVE-2025-58371
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.