CVE-2026-5597

Name of the Vulnerable Software and Affected Versions griptape versions 0.19.4

Description A flaw exists in griptape-ai griptape version 0.19.4 within the ComputerTool component, specifically in the file griptapetoolscomputertool.py. Manipulation of the filename argument can lead to a path traversal, potentially allowing remote attacks. The exploit has been published.

Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the filename argument in the ComputerTool component.