| Title | OpenAkita openakita ≤1.24.3 Local Privilege Escalation |
|---|
| Description | OpenAkita provides an AI agent capable of executing shell commands on behalf of users. A local attacker can leverage this functionality to execute arbitrary commands in the context of the OpenAkita process. If the application is running with elevated privileges or the attacker can influence the AI’s decision-making, this results in privilege escalation. |
|---|
| Source | ⚠️ https://www.notion.so/OpenAkita-Local-Privilege-Escalation-via-Arbitrary-Command-Execution-314ea92a3c418075b1acd98f493860e2 |
|---|
| User | din4 (UID 50867) |
|---|
| Submission | 02/27/2026 03:38 (1 month ago) |
|---|
| Moderation | 03/11/2026 14:08 (12 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 350393 [OpenAkita up to 1.24.3 Chat API Endpoint shell.py run Message os command injection] |
|---|
| Points | 15 |
|---|