CVE-2026-25592: Semantic Kernel has Arbitrary File Write via AI Agent Function Calling in .NET SDK
What kind of vulnerability is it? Who is impacted?
An Arbitrary File Write vulnerability has been identified in Microsoft’s Semantic Kernel .NET SDK, specifically within the SessionsPythonPlugin.
Developers who have built applications which include Microsoft’s Semantic Kernel .NET SDK and are using the SessionsPythonPlugin.
References
- github.com/advisories/GHSA-2ww3-72rp-wpp4
- github.com/microsoft/semantic-kernel
- github.com/microsoft/semantic-kernel/blob/main/dotnet/samples/Demos/CodeInterpreterPlugin/Program.cs
- github.com/microsoft/semantic-kernel/pull/13478/changes
- github.com/microsoft/semantic-kernel/security/advisories/GHSA-2ww3-72rp-wpp4
- nvd.nist.gov/vuln/detail/CVE-2026-25592
Code Behaviors & Features
Detect and mitigate CVE-2026-25592 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →