CVE-2025-59956: AgentAPI is an HTTP API for Claude Code, Goose, Aider, Gemini, Amp, and Codex. Versions 0.3.3 and below are susceptible
mediumvulnerabilityLLM-Specific
security
Summary
AgentAPI (an HTTP interface for various AI coding assistants) versions 0.3.3 and below are vulnerable to a DNS rebinding attack (where an attacker tricks your browser into connecting to a malicious server that responds like your local machine), allowing unauthorized access to the /messages endpoint. This vulnerability can expose sensitive data stored locally, including API keys, file contents, and code the user was developing.
Solution / Mitigation
This issue is fixed in version 0.4.0.
Vulnerability Details
CVSS Score
6.5(medium)
EPSS (30-day exploit probability)
EPSS: 0.1%
Classification
Attack Type
Data Extraction
Attack SophisticationModerate
Impact (CIA+S)
confidentialityintegrity
Affected Vendors
AnthropicGoogle
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-59956
First tracked: February 15, 2026 at 08:51 PM
Classified by LLM (prompt v3) · confidence: 95%