Skip to main content

aandrew-me tgpt CVE-2026-8210

LOW
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') (CWE-74)
2026-05-09 cna@vuldb.com
1.9
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
1.9 LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

2
Analysis Generated
May 09, 2026 - 21:30 vuln.today
CVE Published
May 09, 2026 - 21:16 nvd
LOW 1.9

DescriptionCVE.org

A security vulnerability has been detected in aandrew-me tgpt up to 2.11.1 on Linux/macOS. Affected by this vulnerability is the function helper.Update of the file helper.go of the component Update Handler. The manipulation leads to command injection. Local access is required to approach this attack. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Command injection in aandrew-me tgpt up to version 2.11.1 allows local authenticated attackers to execute arbitrary commands via the helper.Update function in helper.go. The vulnerability requires local file system access and an authenticated user context but results in only limited confidentiality impact. Public exploit code exists, though the vendor has not responded to early disclosure attempts, leaving affected users without an official patch.

Technical ContextAI

The aandrew-me tgpt application contains a command injection flaw (CWE-74) in the Update Handler component, specifically within the helper.Update function in helper.go. This indicates unsafe construction or execution of system commands, likely through string concatenation or inadequate input sanitization of user-supplied data passed to shell execution functions. The vulnerability is classified as an improper neutralization of special elements (CWE-74), meaning user input is not properly escaped or validated before being passed to command execution APIs on Linux and macOS platforms.

Affected ProductsAI

aandrew-me tgpt versions up to and including 2.11.1 on Linux and macOS platforms. The vulnerability affects the Update Handler component (helper.go file) and is present in all versions through 2.11.1. No CPE string is provided in available references; affected systems are identified by product name and version range only.

RemediationAI

No vendor-released patch identified at time of analysis, as the vendor did not respond to early disclosure. Users should immediately upgrade to a version beyond 2.11.1 if available from the repository, or verify with the upstream project whether a patch has been released post-disclosure. As a compensating control, restrict local user access on systems running tgpt by applying principle of least privilege: disable unnecessary local user accounts, use Unix file permissions to restrict execution of tgpt update functions to trusted administrators only (chmod 700 on tgpt binary and helper.go source/compiled artifacts), and monitor process execution logs for suspicious command invocations originating from the helper.Update function. For environments where tgpt is containerized, run containers in read-only mode and with restricted capabilities (CAP_SYS_ADMIN denied) to limit command injection impact. These controls reduce but do not eliminate risk; they are temporary until an official patch becomes available. If tgpt update functionality is not required, consider disabling or removing the Update Handler entirely.

Share

CVE-2026-8210 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy