Ridvay Code's command auto-approval module contains a critical OS command injection vulnerability (CWE-78) due to improper parsing of command structures. The module relies on regular expressions to identify safe commands but does not account for Shell command substitution syntax like $(...) and backticks. An attacker can craft commands such as git log --grep="$(malicious_command)" which the system misclassifies as safe, causing the underlying Shell to execute the injected malicious code. This results in remote code execution with no required privileges or user interaction. The CVSS v3.1 score is 9.8, indicating critical severity with network attack vector, low attack complexity, no privileges required, no user interaction, and full confidentiality, integrity, and availability impact.

Successful exploitation allows an unauthenticated attacker to execute arbitrary OS commands remotely on the affected system. This leads to full compromise of confidentiality, integrity, and availability of the system running Ridvay Code's command auto-approval module. The whitelist mechanism designed to prevent dangerous commands is completely bypassed, enabling remote code execution without any user interaction or privileges.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or patch links are currently available. Until a patch is released, users should consider disabling or restricting the use of the vulnerable command auto-approval module to prevent exploitation. Avoid exposing the vulnerable functionality to untrusted inputs or network access. Monitor vendor communications closely for updates and apply official fixes as soon as they become available.