As AI agents increasingly rely on third-party API routers, criminals are using this dependence to trick users and inject malicious code into their machines.
The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results