Privilege Escalation in CodexBar CLI Installer by Vendor Steipete
CVE-2026-49134

7.5HIGH

Key Information:

Vendor

Steipete

Status
Codexbar
Vendor
CVE Published:
1 June 2026

What is CVE-2026-49134?

The CodexBar CLI installer version prior to 0.32.0 features a vulnerability that permits local attackers to escalate their privileges. By exploiting a race condition in the handling of temporary files, an attacker can execute arbitrary commands as root. The vulnerability arises when the installer utilizes mktemp to create a temporary file and subsequently writes a privileged shell payload into that file. During the execution process, if a user operates a local process with the same user permissions, they can alter the contents of the installer before the prompt for administrator approval is presented. This flaw enables the execution of attacker-controlled commands with elevated privileges, posing significant security risks.

Affected Version(s)

CodexBar 0

References

https://github.com/steipete/CodexBar/releases/tag/v0.32.0
release-notes
https://github.com/steipete/CodexBar/pull/1222
issue-tracking
https://github.com/steipete/CodexBar/commit/dbc944d46cd4c...
patch

CVSS V4

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Chia Min Jun Lennon
.