Arbitrary Code Execution Vulnerability Affecting Roo Code by Roo Code Inc.
CVE-2025-58372

8.1HIGH

Key Information:

Vendor: Roocodeinc
Status: Roo-code
Vendor: CVE Published:; 5 September 2025

What is CVE-2025-58372?

Roo Code, an AI-driven coding agent, has a flaw in version 3.25.23 and earlier where certain VS Code workspace files are not secured as intended. If auto-approval for file writes is enabled, a threat actor can manipulate input prompts to write harmful workspace settings or tasks. When the workspace reopens, these tasks can execute automatically, leading to arbitrary code execution. Users are advised to upgrade to version 3.26.0 to mitigate this risk.

Affected Version(s)

Roo-Code < 3.26.0

References

https://github.com/RooCodeInc/Roo-Code/security/advisorie...

x_refsource_CONFIRM

https://github.com/RooCodeInc/Roo-Code/commit/296edfc829a...

x_refsource_MISC

https://github.com/RooCodeInc/Roo-Code/releases/tag/v3.26.0

x_refsource_MISC

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 5, 2025
Vulnerability Reserved
Aug 29, 2025

Roocodeinc

What is CVE-2025-58372?

Affected Version(s)

References

CVSS V3.1

Timeline