An issue in Automai BotManager v.25.2.0 allows a remote attacker to execute arbitrary code via the BotManager.exe component
Published:
11 January 2026 at 23:00:00
Alert date:
12 January 2026 at 18:02:27
Source:
nvd.nist.gov
Enterprise Applications
CVE-2025-46070 is a vulnerability in Automai BotManager v.25.2.0 that allows remote attackers to execute arbitrary code via the BotManager.exe component. This represents a critical security flaw in the automation software that could enable complete system compromise. The vulnerability affects the core executable component of the BotManager application. Remote code execution vulnerabilities are considered high severity due to their potential for complete system takeover. The issue has been documented by security researchers at ZeroBreach GmbH.
Technical details
Mitigation steps:
Affected products:
Automai BotManager
Related links:
https://nvd.nist.gov/vuln/detail/CVE-2025-46070
https://gist.github.com/ZeroBreach-GmbH/776dd7e927d9b2f8ef10807abe124f8e
https://www.automai.com/
Related CVE's:
Related threat actors:
IOC's:
This article was created with the assistance of AI technology by Perceptive.