Flaw in Gemini CLI AI coding assistant allowed stealthy code execution

A vulnerability in Google’s Gemini CLI allowed attackers to silently execute malicious commands and exfiltrate data from developers’ computers using allowlisted programs. […]

Source:: BleepingComputer