Skip to main content

Evolver CVE-2026-42075

| EUVDEUVD-2026-27007 HIGH
Path Traversal (CWE-22)
2026-05-04 GitHub_M GHSA-r466-rxw4-3j9j
8.1
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
8.1 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
High

Lifecycle Timeline

7
Patch available
May 04, 2026 - 18:32 EUVD
Patch released
May 04, 2026 - 18:16 nvd
Patch available
Source Code Evidence Fetched
May 04, 2026 - 17:48 vuln.today
Analysis Generated
May 04, 2026 - 17:48 vuln.today
EUVD ID Assigned
May 04, 2026 - 17:15 euvd
EUVD-2026-27007
Analysis Generated
May 04, 2026 - 17:15 vuln.today
CVE Published
May 04, 2026 - 16:47 nvd
HIGH 8.1

DescriptionGitHub Advisory

Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a path traversal vulnerability in the skill download (fetch) command allows attackers to write files to arbitrary locations on the filesystem. The --out= flag accepts user-provided paths without validation, enabling directory traversal attacks that can overwrite critical system files or create files in sensitive location. This issue has been patched in version 1.69.3.

AnalysisAI

Path traversal in Evolver's skill fetch command enables arbitrary file writes via unvalidated --out= flag. Authenticated attackers can overwrite system files or create malicious files in sensitive locations (e.g., cron directories) by using directory traversal sequences like '../../../etc/cron.d'. The vulnerability exists in index.js where user-provided paths from --out= are extracted without sanitization and passed directly to fs.mkdirSync(). Patch released in version 1.69.3. EPSS data not available; no CISA KEV listing indicates no confirmed widespread exploitation.

Technical ContextAI

Evolver is a GEP-powered self-evolving AI agent engine distributed as npm package @evomap/evolver. The vulnerability is a classic CWE-22 path traversal affecting the skill download fetch command's file handling logic. In index.js lines 752-767, the code extracts the --out= flag value using outFlag.slice('--out='.length) and passes it directly to Node.js fs.mkdirSync() without path canonicalization or boundary validation. While the fallback safeId variable sanitizes skill IDs via regex replacement, this protection only applies to the default path construction, not user-supplied --out= values. The cpe:2.3:a:evomap:evolver designation confirms this is an application-layer vulnerability in the Evolver product itself, not a transitive dependency issue. The GitHub Security Advisory GHSA-r466-rxw4-3j9j provides proof-of-concept code demonstrating directory traversal to /tmp and notes potential for targeting /etc/cron.d for privilege escalation.

RemediationAI

Upgrade to Evolver version 1.69.3 or later (npm install @evomap/evolver@1.69.3), which includes input validation for the --out= flag per release notes at https://github.com/EvoMap/evolver/releases/tag/v1.69.3. If immediate upgrade is not feasible, restrict evolver CLI access to trusted users only and audit all fetch command invocations. For containerized deployments, run evolver with minimal filesystem permissions using read-only mounts except for designated skill directories. Implement mandatory code review for any automation scripts invoking evolver fetch to ensure --out= values are hardcoded or validated against an allowlist of safe paths. Monitor filesystem changes in sensitive directories (/etc, /usr, system cron directories) for unexpected writes. Note that disabling the fetch command entirely is not practical as it is core functionality; access control is the primary workaround until patching.

Share

CVE-2026-42075 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy