An issue in Automai Director v.25.2.0 allows a remote attacker to execute arbitrary code via the update mechanism
Published:
11 January 2026 at 23:00:00
Alert date:
12 January 2026 at 18:02:27
Source:
nvd.nist.gov
Enterprise Applications
CVE-2025-46068 is a vulnerability in Automai Director version 25.2.0 that allows remote attackers to execute arbitrary code through the application's update mechanism. This is a high-severity issue that could allow complete system compromise. The vulnerability affects the software's update functionality, potentially allowing attackers to inject malicious code during update processes. Remote code execution vulnerabilities are particularly dangerous as they can lead to full system takeover without requiring local access.
Technical details
Mitigation steps:
Affected products:
Automai Director
Related links:
https://nvd.nist.gov/vuln/detail/CVE-2025-46068
https://gist.github.com/ZeroBreach-GmbH/00ea6cce1299e1d999b5d1faac4248f1
https://www.automai.com/
Related CVE's:
Related threat actors:
IOC's:
This article was created with the assistance of AI technology by Perceptive.