CVE-2026-41679

Published: Apr 23, 2026

Modified: Apr 23, 2026

PUBLISHED

CVSS v3.1

10.0

CRITICAL

Description

Paperclip is a Node.js server and React UI that orchestrates a team of AI agents to run a business. Prior to version 2026.416.0, an unauthenticated attacker can achieve full remote code execution on any network-accessible Paperclip instance running in `authenticated` mode with default configuration. No user interaction, no credentials, just the target's address. The chain consists of six API calls. The attack is fully automated, requires no user interaction, and works against the default deployment configuration. Version 2026.416.0 patches the issue.

Vendor	Product	Versions
paperclipai	paperclip	affected `< 2026.410.0`
paperclipai	@paperclipai/server	affected `< 2026.410.0`

Weaknesses (CWE)

CWE-287

CWE-862

CWE-1188

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

References

https://github.com/paperclipai/paperclip/security/advisories/GHSA-68qg-g8mg-6pr7

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-41679

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References