CVE-2026-22682

Name of the Vulnerable Software and Affected Versions OpenHarness versions prior to commit 166fcfe

Description OpenHarness contains an improper access control issue in its built-in file tools. This is due to inconsistent handling of parameters when enforcing permissions. Attackers who can influence agent tool execution may be able to read arbitrary local files outside the intended repository scope. The read file, write file, edit file, and notebook edit tools do not pass the path parameter to the PermissionChecker, bypassing deny rules. This allows access to sensitive files like configuration files, credentials, and SSH material, or the creation and overwriting of files in restricted host paths when in full auto mode.

Recommendations Update OpenHarness to commit 166fcfe or later.