Attacks/Context Manipulation/CM-009

CRITICALCWE-20

CM-009 Tool Memory Poisoning

Context Manipulation — Attempts to poison agent context or memory

Description

Attempts to poison tool/function memory

Remediation

Do not allow runtime tool reconfiguration via user input.

Severity

CRITICAL

OASB Control

CWE

CWE-20

Run this test

$ npx hackmyagent attack --payload CM-009

PreviousCM-008 Multi-Session Poisoning NextCM-010 RAG Poisoning Simulation