Skip to main content

Zed Editor CVE-2026-44461

| EUVDEUVD-2026-32936 HIGH
OS Command Injection (CWE-78)
2026-05-28 GitHub_M
8.6
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
8.6 HIGH
AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Patch available
May 28, 2026 - 18:02 EUVD
Analysis Generated
May 28, 2026 - 17:21 vuln.today

DescriptionGitHub Advisory

Zed is a code editor. Prior to 0.227.1, Zed builds SSH/WSL remote commands as a shell command string that starts with exec env ..., but environment variable keys are inserted without shell quoting or validation. If an attacker can control an environment variable key (for example via project terminal settings), shell expansions in the key (such as $(...)) are evaluated by the remote shell when a terminal is opened. This can lead to arbitrary command execution on the remote host under the victim user's account. This vulnerability is fixed in 0.227.1.

AnalysisAI

Remote command execution in Zed code editor versions prior to 0.227.1 occurs when opening SSH or WSL remote terminals because environment variable keys are passed into a shell command string without quoting or validation. An attacker who can influence project terminal settings (for example, through a shared or malicious project) can embed shell expansions such as $(...) into env var keys, achieving arbitrary command execution on the remote host as the victim user when they open a terminal. No public exploit identified at time of analysis, but the issue is fixed in Zed 0.227.1.

Technical ContextAI

Zed is a collaborative, multi-developer code editor from Zed Industries (CPE cpe:2.3:a:zed-industries:zed) that supports executing terminals on remote targets over SSH and Windows Subsystem for Linux. To launch a remote terminal, Zed constructs a shell command string of the form 'exec env KEY=VALUE ... <cmd>'. The root cause maps to CWE-78 (OS Command Injection): while the values may be handled, the environment variable keys themselves are concatenated into the command string without shell quoting or character whitelisting, so any shell metacharacters or command substitutions embedded in a key are evaluated by the remote shell at terminal launch time.

RemediationAI

Vendor-released patch: Zed 0.227.1 - upgrade all Zed installations to 0.227.1 or later as the primary fix, per the advisory at https://github.com/zed-industries/zed/security/advisories/GHSA-63qj-jc2q-7hg5. Until upgrade is possible, avoid opening untrusted or shared projects in Zed and, for projects you must open, inspect and remove any custom env entries in terminal/project settings before launching SSH or WSL terminals; treat project-level configuration files (e.g., .zed/ workspace settings committed in a repo) as executable content. As an additional compensating control, refrain from opening remote (SSH/WSL) terminals from suspect projects, since the injection only fires when the remote terminal command is constructed - at the cost of losing remote terminal workflow for those projects.

More in Zed

View all
CVE-2026-27976 HIGH POC
8.8 Feb 26

Zed, a code editor, has an extension installer allows tar/gzip downloads. [CVSS 8.8 HIGH]

CVE-2026-27800 HIGH POC
7.4 Feb 26

Zed code editor versions prior to 0.224.4 contain a path traversal vulnerability in ZIP extraction that fails to sanitiz

CVE-2026-27967 HIGH POC
7.1 Feb 26

Zed code editor versions before 0.225.9 fail to properly validate symbolic links in Agent file tools, allowing attackers

CVE-2026-25805 MEDIUM POC
6.4 Feb 10

Zed Editor versions prior to 0.219.4 fail to display tool invocation parameters during permission prompts or after execu

CVE-2018-16518 CRITICAL
9.8 Sep 05

A directory traversal vulnerability with remote code execution in Prim'X Zed!. Rated critical severity (CVSS 9.8), this

CVE-2026-44465 HIGH
8.6 May 28

Remote code execution in Zed code editor versions prior to 0.227.1 occurs when a user opens a folder containing a malici

CVE-2026-44463 HIGH
8.6 May 28

Arbitrary code execution in the Zed code editor (versions prior to 0.229.0) is possible by abusing its terminal tool per

CVE-2026-44466 HIGH
8.6 May 28

Command injection in Zed code editor versions prior to 0.229.0 allows bypass of the terminal tool's permission allowlist

CVE-2023-50444 HIGH
7.5 Dec 13

By default, .ZED containers produced by PRIMX ZED!. Rated high severity (CVSS 7.5), this vulnerability is remotely explo

CVE-2026-44462 MEDIUM
6.4 May 28

{var@P} prompt-string operator. Zed's terminal tool system enforces command-prefix allowlists to control what commands c

CVE-2023-50440 MEDIUM
5.5 Dec 13

ZED containers produced by PRIMX ZED!. Rated medium severity (CVSS 5.5), this vulnerability is no authentication require

CVE-2023-50439 MEDIUM
5.3 Dec 13

ZED containers produced by PRIMX ZED!. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no

Share

CVE-2026-44461 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy