Unrated severityOSV Advisory· Published Dec 27, 2025· Updated Dec 29, 2025

1-click Remote Code Execution (RCE) vulnerability in Eigent

CVE-2025-68952

Description

Eigent is a multi-agent Workforce. In version 0.0.60, a 1-click Remote Code Execution (RCE) vulnerability has been identified in Eigent. This vulnerability allows an attacker to execute arbitrary code on the victim's machine or server through a specific interaction (1-click). This issue has been patched in version 0.0.61.

Affected products

Eigent Ai/EigentOSV2 versions
v0.0.51, v0.0.52, v0.0.53, …+ 1 more
- (no CPE)range: v0.0.51, v0.0.52, v0.0.53, …
- (no CPE)range: <=0.0.60, <0.0.61

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/eigent-ai/eigent/security/advisories/GHSA-pwcx-28p4-rmq4mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000