Home

Description

Vibe-Trading before 0.1.10 constructs the swarm run directory by joining a caller-supplied run identifier onto the runs base directory without validation in run_dir (agent/src/swarm/store.py). A crafted run identifier supplied through the MCP swarm tools causes the application to read arbitrary run.json files outside the runs directory and to overwrite existing run.json files at traversed locations.

PUBLISHED Reserved 2026-06-29 | Published 2026-06-30 | Updated 2026-07-14 | Assigner VulnCheck




MEDIUM: 4.2CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

LOW: 2.3CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

Problem types

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status
unaffected

Any version before 0.1.10
affected

Credits

Chia Min Jun Lennon finder

References

github.com/HKUDS/Vibe-Trading/releases/tag/v0.1.10 (Release Notes) release-notes

github.com/HKUDS/Vibe-Trading/pull/258 (Fix PR) issue-tracking

github.com/...ommit/f45fd85392f07b5e404e41d4fcb0ef0d6c2f87ab (Fix Commit) patch

www.vulncheck.com/...path-traversal-via-swarm-run-identifier third-party-advisory

cve.org (CVE-2026-58171)

nvd.nist.gov (CVE-2026-58171)

Download JSON