CVE-2026-41208

Name of the Vulnerable Software and Affected Versions @paperclipai/server versions prior to 2026.416.0

Description An issue in the Node.js server and React UI used to orchestrate AI agents allows an attacker with an Agent API key to execute arbitrary OS commands on the server host. This occurs because agents can update their own adapterConfig via the '/agents/:id' API endpoint. Specifically, the server runtime executes the adapterConfig.workspaceStrategy.provisionCommand field, enabling an attacker to inject shell commands during workspace provisioning and escalate privileges from the agent runtime to the server host.

Recommendations Update to version 2026.416.0.