CVE-2026-22869 HIGH

CVE-2026-22869: Eigent Allows Arbitrary Code Execution via pull_request_target CI Workflow

Vendor Eigent-Ai
Product eigent
Weakness CWE-94 · Code injection
Published January 13, 2026
Last update January 14, 2026

CVSS base score

8.9/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

Eigent is a multi-agent Workforce. A critical security vulnerability in the CI workflow (.github/workflows/ci.yml) allows arbitrary code execution from fork pull requests with repository write permissions. The vulnerable workflow uses pull_request_target trigger combined with checkout of untrusted PR code. An attacker can exploit this to steal credentials, post comments, push code, or create releases.

Key dates

02Disclosure timeline

January 13, 2026 CVE published
January 14, 2026 Record updated