Lucene search
K

36 matches found

Vulnrichment
Vulnrichment
added 2026/03/30 3:50 p.m.3 views

CVE-2026-2287 CVE-2026-2287

CrewAI does not properly check that Docker is still running during runtime, and will fall back to a sandbox setting that allows for RCE exploitation...

5.9AI score0.00694EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/30 3:50 p.m.21 views

CVE-2026-2287 CVE-2026-2287

CrewAI does not properly check that Docker is still running during runtime, and will fall back to a sandbox setting that allows for RCE exploitation...

0.00694EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/30 3:50 p.m.23 views

CVE-2026-2275 CVE-2026-2275

The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function calling...

0.00442EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/30 3:50 p.m.2 views

CVE-2026-2275 CVE-2026-2275

The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which can enable RCE through arbitrary C function calling...

6AI score0.00442EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.9 views

CrewAI 安全漏洞

CrewAI is an open-source code execution and analysis tool component developed by CrewAI. CrewAI has a security vulnerability that stems from the ability to revert to SandboxPython, allowing arbitrary C function calls, which may lead to remote code execution...

9.6CVSS6.7AI score0.00442EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.7 views

PT-2026-29048

Name of the Vulnerable Software and Affected Versions CrewAI versions affected versions not specified Description The CodeInterpreter tool within CrewAI reverts to SandboxPython when Docker is unreachable. This fallback can allow for Remote Code Execution RCE through the ability to call arbitrary...

9.6CVSS6.1AI score0.00442EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.9 views

CrewAI 安全漏洞

CrewAI is an open-source code execution and analysis tool component developed by CrewAI. CrewAI has a security vulnerability, which stems from the RAG search tool failing to properly validate URLs, potentially leading to server-side request forgeing attacks...

9.8CVSS6.4AI score0.00467EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.6 views

CrewAI 安全漏洞

CrewAI is an open-source code execution and analysis tool component developed by CrewAI. CrewAI has a security vulnerability, which stems from a lack of path validation in the JSON loading mechanism, potentially allowing arbitrary local file reading...

7.5CVSS6.5AI score0.00605EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.11 views

CrewAI 安全漏洞

CrewAI is an open-source code execution and analysis tool component developed by CrewAI. CrewAI has a security vulnerability that stems from incorrect checking of Docker’s running status and reverting to a sandbox setting, which may lead to remote code execution...

9.8CVSS6.6AI score0.00694EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/01/21 7:6 p.m.163 views

gotham-recon

Documentation Complete du Systeme d'Agents CrewAI Guide t...

6.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/17 12:0 a.m.4 views

Many Hands Make Light Work: An LLM-Based Multi-Agent System for Detecting Malicious PyPI Packages

Malicious code in open-source repositories such as PyPI poses a growing threat to software supply chains. Traditional rule-based tools often overlook the semantic patterns in source code that are crucial for identifying adversarial components. Large language models LLMs show promise for software...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2025/03/20 12:32 p.m.5 views

agentic-fleet (>=0.1.6 <=0.4.81), composio (=0.1.1) +37 more potentially affected by CVE-2024-8952 via composio-core (>=0.3.13 <=0.7.21)

composio-core PYPI version =0.3.13, =0.1.6, =0.7.1, =0.3.13, =0.3.17, =0.3.13, =0.3.13, =0.7.1, =0.5.26, =0.3.13, =0.3.13, =0.3.13, =0.3.24, =0.7.15, =0.3.13, =0.7.20 and more Source cves: CVE-2024-8952 Source advisory: SNYK:PYTHON-COMPOSIOCORE-9637813...

7.5CVSS6.7AI score0.00671EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/03/20 12:32 p.m.9 views

composio-autogen (>=0.3.13 <=0.5.42), composio-camel (>=0.3.17 <=0.5.42) +13 more potentially affected by CVE-2024-8953 via composio-core (>=0.3.13 <=0.5.42)

composio-core PYPI version =0.3.13, =0.3.13, =0.3.17, =0.3.13, =0.3.13, =0.5.26, =0.3.13, =0.3.13, =0.3.13, =0.3.24, =0.3.13, =0.3.13, =0.3.13, =0.4.2, =0.3.24, =0.2.31, =0.2.40 Source cves: CVE-2024-8953 Source advisory: SNYK:PYTHON-COMPOSIOCORE-9637814...

9.8CVSS7AI score0.01103EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/09/16 2:37 p.m.5 views

composio-autogen (>=0.3.13 <=0.5.52rc2), composio-camel (>=0.3.17 <=0.5.52rc2) +15 more potentially affected by CVE-2024-8865 via composio-core (>=0.3.13 <=0.5.8)

composio-core PYPI version =0.3.13, =0.3.13, =0.3.17, =0.3.13, =0.3.13, =0.5.26, =0.3.13, =0.3.13, =0.3.13, =0.3.24, =0.3.13, =0.3.13, =0.3.13, =0.4.2, =0.3.24, =0.5.43 - gensphere =0.1.9 and more Source cves: CVE-2024-8865 Source advisory: OSV:GHSA-66R2-XM28-74W9...

5.1CVSS5.7AI score0.00863EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/05/03 5:29 p.m.5 views

01os (>=0.0.1 <=0.0.14), 0b1-protocol (>=0.1.0 <=0.1.3) +43116 more potentially affected by CVE-2024-30251 via aiohttp (>=0.13.1 <=3.9.3)

aiohttp PYPI version =0.13.1, =0.0.1, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.1, =0.1.2, =0.1.3 - 1942pyc =7.0.1 and more Source cves: CVE-2024-30251 Source advisory: OSV:GHSA-5M98-QGG9-WH84...

7.5CVSS6.7AI score0.01085EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2023/11/29 8:15 p.m.10 views

01os (>=0.0.1 <=0.0.14), 0b1-protocol (>=0.1.0 <=0.1.3) +43009 more potentially affected by CVE-2023-49082 via aiohttp (>=0.13.1 <=3.8.6)

aiohttp PYPI version =0.13.1, =0.0.1, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.1, =0.1.2, =0.1.3 - 1942pyc =7.0.1 and more Source cves: CVE-2023-49082 Source advisory: OSV:PYSEC-2023-251...

5.3CVSS6.3AI score0.0094EPSS
Exploits1
Rows per page
Query Builder