CVE-2026-10177 in Aiderthông tin

Tóm tắt

Bởi MITRE • 31/05/2026

A security vulnerability has been detected in Aider-AI Aider 0.86.3. This affects the function requests.get of the file api_docs.py of the component AWS EC2 Metadata Endpoint. The manipulation leads to server-side request forgery. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. It is suggested to install a patch to address this issue. The pull request to fix this issue awaits acceptance.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

VulDB

Tiết lộ

31/05/2026

Kiểm duyệt

được chấp nhận

mục

VDB-367458

CPE

sẵn sàng

CWE

CWE-918 (Đã xác nhận)

Khai thác

Tải xuống

CVSS

6.3 (VulDB)

EPSS

0.00043

KEV

không

Các hoạt động

rất thấp

ngành

Transportation, Telecommunication, ...

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-10177
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-10177
CVE Details	https://www.cvedetails.com/cve/CVE-2026-10177/

◂ Trước Tổng Quan Tiếp theo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!