Unknown · Ai-Scanner · CVE-2026-41512
**Name of the Vulnerable Software and Affected Versions**
ai-scanner versions 1.0.0 through 1.4.0
**Description**
Remote code execution is possible via JavaScript injection in the `BrowserAutomation::PlaywrightService` function. This software is an AI model safety scanner built on NVIDIA garak.
**Recommendations**
Update to version 1.4.1.