The ai_cmd utility executes with full root permissions. It pipes socket inputs directly to popen(), paving the way for unauthenticated users to execute arbitrary root commands.
The ai_cmd utility executes with
Exploit
CVE-2026-49188
NVD
Refer to CVE-2026-49188 NVD advisory