CVE-2026-34938: PraisonAI Agents RCE Vulnerability (CVSS 10)
Plattform
python
Komponente
praisonai-agents
Behoben in
1.5.90
CVE-2026-34938 is a critical remote code execution (RCE) vulnerability affecting PraisonAI Agents. Specifically, the `execute_code()` function allows attackers to bypass the sandbox and execute arbitrary OS commands. This vulnerability affects versions less than or equal to 1.5.90. The issue has been patched in version 1.5.90.
So beheben
Kein offizieller Patch verfügbar. Prüfe auf Workarounds oder überwache auf Updates.
Häufig gestellte Fragen
What is CVE-2026-34938?
CVE-2026-34938 is a critical remote code execution (RCE) vulnerability in PraisonAI Agents that allows attackers to execute arbitrary OS commands on the host system.
Am I affected by CVE-2026-34938?
You are affected by CVE-2026-34938 if you are using PraisonAI Agents version 1.5.90 or earlier. This vulnerability allows for arbitrary OS command execution.
How do I fix CVE-2026-34938?
To fix CVE-2026-34938, upgrade your PraisonAI Agents installation to version 1.5.90 or later. This version contains a patch that resolves the remote code execution vulnerability.
Abhängigkeiten automatisch überwachen
Werde benachrichtigt, wenn neue Schwachstellen deine Projekte betreffen. Für immer kostenlos.
Kostenlos starten