Sixth Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability exists in Sixth versions through 0.0.68. The issue arises in the automatic terminal command execution feature, which allows users to execute commands deemed 'safe' by the model without approval. However, this functionality is vulnerable to prompt injection attacks. An attacker can manipulate the model into misclassifying harmful commands as safe, bypassing user consent and enabling arbitrary command execution.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the server where Sixth is running.

Added: Mar 31, 2026, 2:23 PM

Updated: Mar 31, 2026, 2:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.7

remediation

0.0

relevance

5.0

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

7.7

remediation

0.0

relevance

5.0

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sixth Remote Code Execution Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating