Critical Gemini CLI Flaw: Google’s AI Tool Allowed Silent Code Execution via Prompt Injection
A critical vulnerability has been discovered in Google’s newly released command-line interface tool, Gemini CLI, which could allow attackers to covertly execute malicious commands and exfiltrate data from developers’ machines—provided certain commands are permitted...