Description
A security flaw has been discovered in Aider-AI Aider 0.86.3. Affected by this vulnerability is the function editor_coder.run of the file auth.py of the component Architect Mode. Performing a manipulation results in code injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.
Published: 2026-05-31
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from the editor_coder.run function in Aider-AI Aider's Architect Mode, enabling an attacker to inject arbitrary code. This can lead to full compromise of the system where the Aider instance is running, allowing the attacker to execute commands, exfiltrate data, or take control of the environment. The weakness is classified as CWE-74 and CWE-94, indicating improper handling of input leading to code execution.

Affected Systems

Aider-AI's Aider product, specifically version 0.86.3, is affected. Users running this version in Architect Mode are at risk. No other versions or components are listed as affected.

Risk and Exploitability

The CVSS score of 5.3 indicates a moderate risk, but remote exploitation is possible and an exploit package has been publicly released, making the threat real. EPSS data is unavailable, so the exact likelihood of exploitation cannot be quantified, and the vulnerability is not yet listed in the CISA KEV catalog. The attack vector is inferred from the description as remote, likely through network interfaces that expose Architect Mode. Since the project has not responded to early issue reports, a patch is not yet available, raising the severity of the ongoing threat.

Generated by OpenCVE AI on May 31, 2026 at 10:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Monitor Aider for new releases and apply any available patch as soon as it addresses the editor_coder.run injection flaw
  • Limit network exposure of Architect Mode by restricting access to trusted IPs or placing the service behind a firewall
  • If possible, temporarily disable Architect Mode or isolate Aider in a sandboxed environment until a patch is released

Generated by OpenCVE AI on May 31, 2026 at 10:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 31 May 2026 09:00:00 +0000

Type Values Removed Values Added
Description A security flaw has been discovered in Aider-AI Aider 0.86.3. Affected by this vulnerability is the function editor_coder.run of the file auth.py of the component Architect Mode. Performing a manipulation results in code injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.
Title Aider-AI Aider Architect Mode auth.py editor_coder.run code injection
First Time appeared Aider-ai
Aider-ai aider
Weaknesses CWE-74
CWE-94
CPEs cpe:2.3:a:aider-ai:aider:*:*:*:*:*:*:*:*
Vendors & Products Aider-ai
Aider-ai aider
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Aider-ai Aider
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-05-31T08:45:07.461Z

Reserved: 2026-05-30T16:21:40.551Z

Link: CVE-2026-10175

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-31T09:16:15.367

Modified: 2026-05-31T09:16:15.367

Link: CVE-2026-10175

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-31T11:00:10Z

Weaknesses