OpenAI Codex Desktop App for macOS Vulnerability Allows Attackers to Inject Indirect Prompt

A newly disclosed vulnerability in the OpenAI Codex desktop application for macOS could allow attackers to exploit indirect prompt injection techniques to exfiltrate sensitive data, according to a recent entry in the GitHub Advisory Database. Tracked as CVE-2026-14898, the issue arises from how the Codex app handles Markdown content in model-generated responses. Specifically, the application […]

The post OpenAI Codex Desktop App for macOS Vulnerability Allows Attackers to Inject Indirect Prompt appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article: