CVE-2026-10174

Name of the Vulnerable Software and Affected Versions Aider-AI Aider version 0.86.3

Description A flaw in the Pre-commit Hook Handler component, specifically within the aider/args.py file, allows for a protection mechanism failure. This occurs through the manipulation of the git-commit-verify argument, which can lead to remote code execution. The attack can be launched remotely.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.