CVE-2026-8767

CVSS v3.1

7.5

High

Vector

AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions vercel ai versions prior to 3.0.98

Description An OS command injection issue exists in the PR Branch Name Interpolation component. The flaw is located within the run() function of the .github/workflows/prettier-on-automerge.yml file. This allows a remote attacker to execute arbitrary operating system commands, although the attack complexity is high and exploitability is considered difficult.

Recommendations Update to a version later than 3.0.97. As a temporary workaround, restrict access to or disable the run() function in the .github/workflows/prettier-on-automerge.yml file.

Exploit

Fix

Command Injection

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77CWE-78

Related Identifiers

CVE-2026-8767

Affected Products

Vercel Ai

CVE-2026-8767

Weakness Enumeration

Related Identifiers

Affected Products

References · 10