HIGH
Microsoft Fixes AutoGen Studio Flaw That Enabled Code Execution
Microsoft patched a vulnerability chain dubbed AutoJack in AutoGen Studio, its interface for prototyping AI agents. The flaw could let an attacker manipulate an agent into executing arbitrary commands on its host system simply by getting the agent to visit a malicious webpage. It’s a reminder that AI agent tooling capable of browsing or fetching external content needs the same input/execution isolation as any other untrusted-content pipeline. Users should update to the patched AutoGen Studio release.