CVE-2025-55345HIGH 8.8EPSS p51.2%

CVE-2025-55345CVE-2025-55345

Description

Using Codex CLI in workspace-write mode inside a malicious context (repo, directory, etc) could lead to arbitrary file overwrite and potentially remote code execution due to symlinks being followed outside the allowed current working directory.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS0.78% probability of exploitation · percentile 51.2% · 2026-06-18T12:00:27Z
Published2025-08-13
Last modified2026-04-15

Underlying weaknesses· 1

CWE-61

References

  1. https://github.com/openai/codex/pull/1705
  2. https://research.jfrog.com/vulnerabilities/codex-cli-symlink-arbitrary-file-overwrite-jfsa-2025-001378631/
  3. https://research.jfrog.com/vulnerabilities/codex-cli-symlink-arbitrary-file-overwrite-jfsa-2025-001378631/

1

TypeTargetConfidenceTier
WeaknessUNIX Symbolic Link (Symlink) Followingcwe-610%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-54769
CVE
CVE-2025-59171
CVE
CVE-2025-57790
CVE
CVE-2025-1127
CVE
CVE-2025-62630
CVE
CVE-2025-41736
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.