CVE-2026-41512 PUBLISHED

Remote code execution via JavaScript injection in `BrowserAutomation::PlaywrightService`

Assigner: GitHub_M
Reserved: 20.04.2026 Published: 08.05.2026 Updated: 08.05.2026

ai-scanner is an AI model safety scanner built on NVIDIA garak. From version 1.0.0 to before version 1.4.1, there is a remote code execution vulnerability via JavaScript injection in BrowserAutomation::PlaywrightService. This issue has been patched in version 1.4.1.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
CVSS Score: 9.9

Attack Vector	Network	Scope	Changed
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	0din-ai
Product	ai-scanner
Versions	Version >= 1.0.0, < 1.4.1 is affected

References

https://github.com/0din-ai/ai-scanner/security/advisories/GHSA-r27j-xxgx-f5vr
https://github.com/0din-ai/ai-scanner/releases/tag/v1.4.1

Problem Types

CWE-94: Improper Control of Generation of Code ('Code Injection') CWE