Critical Gemini CLI Vulnerability Enables Remote Code Execution Attacks

Critical Gemini CLI Vulnerability Enables Remote Code Execution Attacks. <p>Google has fixed a critical security flaw in the Gemini CLI that could allow attackers to execute remote code in certain automated workflows. The issue affects the npm package&#160;@google/gemini-cli&#160;and the&#160;google-github-actions/run-gemini-cli&#160;GitHub Action, especially when they are used in headless environments such as CI/CD pipelines. According to the security advisory, the vulnerability comes from two