CVE-2025-57771

Name of the Vulnerable Software and Affected Versions: Roo Code versions prior to 3.25.5

Description: Roo Code, an AI-powered autonomous coding agent, does not correctly process process substitution and single ampersand characters within its command parsing logic for auto-execute commands. If a user has enabled auto-approved execution for a command, an attacker who can submit crafted prompts to the agent may inject arbitrary commands to be executed alongside the intended command. Exploitation requires the attacker to have access to submit prompts and for the user to have enabled auto-approved command execution, which is disabled by default. This could allow an attacker to execute arbitrary code.

Recommendations: Update to version 3.25.5 or later.