CVE-2026-14898: The OpenAI Codex desktop app for macOS rendered remote images from Markdown in model responses. An attacker who could pl
Summary
The OpenAI Codex desktop app for macOS had a security flaw where it automatically loaded remote images from AI responses without user confirmation. An attacker could use indirect prompt injection (tricking the AI by hiding instructions in untrusted input like tool results) to make the app fetch images containing sensitive data like API keys or source code, secretly sending that information to the attacker's server.
Vulnerability Details
EPSS: 0.0%
July 6, 2026
Classification
Taxonomy References
Affected Vendors
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-14898
First tracked: July 6, 2026 at 08:07 PM
Classified by LLM (prompt v3) · confidence: 95%