Description
Warp is an agentic development environment. From 0.2024.03.12.08.02.stable_01 until 0.2026.05.06.15.42.stable_01, Warp contains an OS command injection vulnerability in the WSL URL-opening fallback. When Warp is running under WSL and cannot open a URL through wslview, it falls back to a Windows command processor path. A URL controlled through terminal output can reach that fallback when the user opens the link. This vulnerability is fixed in 0.2026.05.06.15.42.stable_01.
Published: 2026-06-24
Score: 7.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Warp, an agentic development environment, allows a malicious actor to execute arbitrary commands on the underlying Windows system when operating under WSL. The vulnerability resides in the URL‑opening fallback mechanism: if Warp cannot open a link through wslview, it falls back to launching a Windows command processor path with the URL as an argument. A URL that is injected into terminal output can trigger this fallback, giving the attacker the ability to run any Windows command. This leads to a loss of confidentiality, integrity, and availability on the host machine.

Affected Systems

The affected product is warpdotdev:warp, versions ranging from 0.2024.03.12.08.02.stable_01 up to but excluding 0.2026.05.06.15.42.stable_01. Version 0.2026.05.06.15.42.stable_01 contains the fix. No other vendors or products are listed.

Risk and Exploitability

The CVSS score of 7.7 indicates high severity, and the EPSS score is not available, but the likely attack vector is a user clicking a malicious link in terminal output while Warp is running in WSL. The vulnerability exploits a missing input validation (CWE‑116) and permits OS command injection (CWE‑78). Because no KEV listing exists, active exploitation may not have been observed yet, yet the impact is significant should the flaw be leveraged.

Generated by OpenCVE AI on June 24, 2026 at 20:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Warp to version 0.2026.05.06.15.42.stable_01 or later to eliminate the vulnerability.
  • If an immediate upgrade is not feasible, reconfigure Warp to use wslview exclusively or disable the fallback mechanism that triggers the Windows command processor.
  • Avoid opening URLs presented in terminal output from untrusted or unknown sources while running Warp under WSL.

Generated by OpenCVE AI on June 24, 2026 at 20:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 25 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 24 Jun 2026 18:00:00 +0000

Type Values Removed Values Added
Description Warp is an agentic development environment. From 0.2024.03.12.08.02.stable_01 until 0.2026.05.06.15.42.stable_01, Warp contains an OS command injection vulnerability in the WSL URL-opening fallback. When Warp is running under WSL and cannot open a URL through wslview, it falls back to a Windows command processor path. A URL controlled through terminal output can reach that fallback when the user opens the link. This vulnerability is fixed in 0.2026.05.06.15.42.stable_01.
Title Warp: OS command injection when opening terminal links from WSL
Weaknesses CWE-116
CWE-78
References
Metrics cvssV3_1

{'score': 7.7, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-25T13:18:33.202Z

Reserved: 2026-06-15T22:58:06.562Z

Link: CVE-2026-54699

cve-icon Vulnrichment

Updated: 2026-06-25T13:18:29.390Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T20:45:03Z

Weaknesses
  • CWE-116

    Improper Encoding or Escaping of Output

  • CWE-78

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')