Flaw in Gemini CLI AI coding assistant allowed stealthy code execution

A vulnerability in Google’s Gemini CLI allowed attackers to silently execute malicious commands and exfiltrate data from developers’ computers using allowlisted programs.

First seen on bleepingcomputer.com

Jump to article: www.bleepingcomputer.com/news/security/flaw-in-gemini-cli-ai-coding-assistant-allowed-stealthy-code-execution/