CVE-2025-55012

Name of the Vulnerable Software and Affected Versions Zed versions prior to 0.197.3

Description Zed is a multiplayer code editor. In versions prior to 0.197.3, the Zed Agent Panel allowed an AI agent to achieve Remote Code Execution (RCE) by bypassing user permission checks. An AI Agent could exploit a permissions bypass to create or modify a project-specific configuration file, leading to the execution of arbitrary commands on a victim's machine without required approval. The vulnerability exists within the Zed Agent Panel and involves bypassing user permission checks. The vulnerable component allows an AI agent to create or modify project-specific configuration files. This can lead to the execution of arbitrary commands on a victim’s machine. The Zed Agent Panel is the affected API endpoint.

Recommendations Versions prior to 0.197.3 should be updated to version 0.197.3 or later. Avoid sending prompts to the Agent Panel. Limit the AI Agent's file system access.