CVEs and Security Vulnerabilities CVEs and Security Vulnerabilities

Filtered by vendor Google Cloud Subscriptions

Filtered by product Gemini Cli Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-12537	1 Google Cloud	2 Gemini Cli, Run-gemini-cli Github Action	2026-06-24	N/A
Improper Neutralization used in an OS Command in the container launcher in Google Gemini CLI (versions prior to 0.39.1) and run-gemini-cli GitHub Action (versions prior to 0.1.22) on headless CI platforms allows an unprivileged attacker to achieve pre-sandbox host-level code execution a maliciously crafted .gemini/.env file.

Page 1 of 1.