Vulnerabilidades en rtk-ai

3 resultados

CVE-2026-55249MEDIUM@rtk-ai/rtk-rewrite: OpenClaw Rewrite Plugin Command Injection via execSync Template StringEPSS 0.2%CVE-2026-54555HIGHrtk: Permission-gate bypass in rtk rewrite auto-allow via unsplit shell separatorsEPSS 0.1%CVE-2026-45792MEDIUMRTK improperly trusts project-local filter configuration, allowing silent tampering of command output shown to LLMEPSS 0.1%