SECURITYCYBERSCOOP
Vuln in Google’s Antigravity AI agent manager could escape sandbox, give attackers remote code execution
Researchers at Pillar Security discovered a critical vulnerability in Google's Antigravity AI tool that allowed attackers to bypass secure mode protections, enabling remote code execution via prompt injection. The flaw, patched after a 53-day disclosure period, exploited native system tools to circumvent sandboxing, highlighting risks in agentic AI systems.
Mentioned