CVE-2026-22812

{"id": "CVE-2026-22812", "cveTags": [], "metrics": {"ssvcV203": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "ssvcData": {"id": "CVE-2026-22812", "role": "CISA Coordinator", "options": [{"exploitation": "poc"}, {"automatable": "no"}, {"technicalImpact": "total"}], "version": "2.0.3", "timestamp": "2026-01-13T14:13:37.474420Z"}}], "cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "affected": [{"source": "security-advisories@github.com", "affectedData": [{"vendor": "anomalyco", "product": "opencode", "versions": [{"status": "affected", "version": "< 1.0.216"}]}]}], "published": "2026-01-12T23:15:53.370", "references": [{"url": "https://github.com/anomalyco/opencode/security/advisories/GHSA-vxw4-wv6m-9hhh", "tags": ["Exploit", "Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/anomalyco/opencode/security/advisories/GHSA-vxw4-wv6m-9hhh", "tags": ["Exploit", "Vendor Advisory"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-306"}, {"lang": "en", "value": "CWE-749"}, {"lang": "en", "value": "CWE-942"}]}], "descriptions": [{"lang": "en", "value": "OpenCode is an open source AI coding agent. Prior to 1.0.216, OpenCode automatically starts an unauthenticated HTTP server that allows any local process (or any website via permissive CORS) to execute arbitrary shell commands with the user's privileges. This vulnerability is fixed in 1.0.216."}, {"lang": "es", "value": "OpenCode es un agente de codificaci\u00f3n de IA de c\u00f3digo abierto. Antes de la 1.0.216, OpenCode inicia autom\u00e1ticamente un servidor HTTP no autenticado que permite a cualquier proceso local (o a cualquier sitio web a trav\u00e9s de CORS permisivo) ejecutar comandos de shell arbitrarios con los privilegios del usuario. Esta vulnerabilidad est\u00e1 corregida en la 1.0.216."}], "lastModified": "2026-06-17T10:20:28.353", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:anoma:opencode:*:*:*:*:*:-:*:*", "vulnerable": true, "matchCriteriaId": "168EE682-3321-4383-8874-2C9D8B949A2F", "versionEndExcluding": "1.0.216"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}