CVE-2026-22812

Summary

OpenCode is an open source AI coding agent. Prior to 1.0.216, OpenCode automatically starts an unauthenticated HTTP server that allows any local process (or any website via permissive CORS) to execute arbitrary shell commands with the user's privileges. This vulnerability is fixed in 1.0.216.

Affected Software

VendorProductVersion RangeStatus
anomalycoopencode< 1.0.216affected

Weaknesses

  • CWE-306: CWE-306: Missing Authentication for Critical Function
  • CWE-749: CWE-749: Exposed Dangerous Method or Function
  • CWE-942: CWE-942: Permissive Cross-domain Policy with Untrusted Domains

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: total

Additional References

References