CVE-2026-42080

CVSS v3.1

4.6

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions PPTAgent versions prior to commit 418491a

Description An arbitrary file write issue exists in this agentic framework for reflective PowerPoint generation. The flaw occurs through the save generated slides() function.

Recommendations Update to commit 418491a or a newer version. As a temporary workaround, restrict the use of the save generated slides() function.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2026-42080

GHSA-PXHG-7XR2-W7XG

Affected Products

Pptagent

CVE-2026-42080

Weakness Enumeration

Related Identifiers

Affected Products

References · 8