ASR AI Security Radar
Methodology Recent Incidents Get Notified

Back to incidents

AI security incident: CVE-2026-26057 (NVD)

Incident date: February 19, 2026 | Published: February 20, 2026 | Source: NVD | Classification confidence: 99%

This incident is part of the public archive and includes explicit AI-related signals from the cited source material. Review methodology.

Skill Scanner is a security scanner for AI Agent Skills that detects prompt injection, data exfiltration, and malicious code patterns. A vulnerability in the API Server of Skill Scanner could allow a unauthenticated, remote attacker to interact with the server API and either trigger a denial of service (DoS) condition or upload arbitrary files. This vulnerability is due to an erroneous binding to multiple interfaces. An attacker could exploit this vulnerability by sending API requests to a device exposing the affected API Server. A successful exploit could allow the attacker to consume an excessive amount of resources (memory starvation) or to upload files to arbitrary folders on the affected device. This vulnerability affects Skill-scanner 1.0.

Why This Is AI-Related

This page is treated as AI-specific because the source material references prompt injection, ai agent, which places the issue inside an AI workflow, model, assistant, or supporting dependency rather than a generic software bulletin.

  • prompt injection
  • ai agent

Affected Workflow

LLM prompts, agent workflows, retrieval layers, and connected tools should be reviewed first.

Likely Attack Path

Untrusted prompts or tool instructions can override intended guardrails, then trigger data access or unsafe downstream actions.

Impact

The weakness can let untrusted prompts or tool instructions bypass intended guardrails and trigger unsafe downstream actions or data access. Severity HIGH. Classification confidence 99%. Source channel NVD.

Detection And Triage Signals

  • Unexpected tool invocation chains after user prompts
  • Prompt logs that include instruction override patterns or policy bypass text
  • Retrieval or plugin calls that expose sensitive internal context

Recommended Response

  • Review prompt templates, tool-invocation rules, and system instructions for the affected workflow.
  • Restrict sensitive tools, retrieval scopes, and outbound actions until guardrails are validated.
  • Search logs for prompt override attempts, unusual tool chains, and sensitive data exposure after user input.

Compliance And Business Impact

Prompt-layer weaknesses can expose regulated data, create unsafe actions, and weaken audit evidence around AI control boundaries.

Sources

Want alerts like this in real time?

Get notified with incident context, likely impact, and response guidance.

Get Notified

More incidents