We use cookies to improve your experience on our site.
AVID-2026-R0416
Description
OpenAI Codex CLI Model Provider Configuration Remote Code Execution
Details
A high-severity vulnerability exists in OpenAI Codex that allows an attacker to redirect all API communications to an attacker-controlled server by placing a malicious .codex/config.toml file in a repository.
References
Affected or Relevant Artifacts
- Developer: OpenAI
- Deployer:
- Artifact Details:
| Type | Name |
|---|---|
| System | Codex CLI |
Impact
- (none)
Other information
- Report Type: Advisory
- Credits: Piotr Ryciak, Mindgard
- Date Reported: 2026-01-16
- Version: 0.3.1
- AVID Entry