CVE-2025-53536 HIGH

CVE-2025-53536: Roo Code allows Potential Remote Code Execution via .vscode/settings.json

Vendor Roocodeinc

Product Roo-Code

Weakness CWE-552 · Files accessible externally

Published July 7, 2025

Last update July 8, 2025

View on NVD All CVEs

CVSS base score

8.1/10

Attack vector Network

Attack complexity High

Privileges required None

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Roo Code is an AI-powered autonomous coding agent. Prior to 3.22.6, if the victim had "Write" auto-approved, an attacker with the ability to submit prompts to the agent could write to VS Code settings files and trigger code execution. There were multiple ways to achieve that. One example is with the php.validate.executablePath setting which lets you set the path for the php executable for syntax validation. The attacker could have written the path to an arbitrary command there and then created a php file to trigger it. This vulnerability is fixed in 3.22.6.

Key dates

02Disclosure timeline

July 7, 2025 CVE published

July 8, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-53536

Related vulnerabilities

CVE-2025-53536: Roo Code allows Potential Remote Code Execution via .vscode/settings.json

01Description

02Disclosure timeline

03References

04Related CVE