Home > Vulnerability Database > CVE-2025-5120

Mend.io Vulnerability Database

CVE-2025-5120

Good to know:

Date: July 27, 2025

A sandbox escape vulnerability was identified in huggingface/smolagents version 1.14.0, allowing attackers to bypass the restricted execution environment and achieve remote code execution (RCE). The vulnerability stems from the local_python_executor.py module, which inadequately restricts Python code execution despite employing static and dynamic checks. Attackers can exploit whitelisted modules and functions to execute arbitrary code, compromising the host system. This flaw undermines the core security boundary intended to isolate untrusted code, posing risks such as unauthorized code execution, data leakage, and potential integration-level compromise. The issue is resolved in version 1.17.0.

Severity Score

10.0

Related Resources (5)

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-5120

Url: https://github.com/huggingface/smolagents/commit/33a942e62b6fbf6a35d41f1c735bda2d64c163d0

Url: https://huntr.com/bounties/63ab1cfe-b573-4cf5-a7d3-fb6c957e34b0

Url: https://github.com/huggingface/smolagents

Url: https://www.mend.io/vulnerability-database/CVE-2025-5120

Severity Score

10.0

Weakness Type (CWE)

Improper Control of Generation of Code ('Code Injection')

CWE-94

Top Fix

Upgrade Version

Upgrade to version smolagents - 1.17.0;smolagents - 1.17.0;https://github.com/huggingface/smolagents.git - v1.17.0

Learn More

CVSS v3.1

Base Score:	10.0
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	CHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-5120

Good to know:

Date: July 27, 2025

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?