Lucene search
+L

11 matches found

redhatcve
redhatcve
added 2026/06/05 7:35 p.m.11 views

CVE-2026-5974

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

9.8CVSS7AI score0.02241EPSS
Exploits1References1
github
github
added 2026/04/09 9:31 p.m.6 views

FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/tools/libs/terminal.py

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

9.8CVSS6.9AI score0.02241EPSS
Exploits1References8Affected Software1
snyk
snyk
added 2026/04/09 9:31 p.m.6 views

Arbitrary Command Injection

Overview metagpt is a The Multi-Agent Framework Affected versions of this package are vulnerable to Arbitrary Command Injection via the Bash.run method in metagpt/tools/libs/terminal.py. An attacker can execute arbitrary operating system commands by supplying crafted input remotely. Remediation A...

9.8CVSS7.7AI score0.02241EPSS
Exploits1References2
euvd
euvd
added 2026/04/09 9:31 p.m.8 views

EUVD-2026-21072

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.5CVSS6.8AI score0.02241EPSS
Exploits1References7
osv
osv
added 2026/04/09 9:31 p.m.8 views

GHSA-FCC8-4Q7H-WVWC FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/tools/libs/terminal.py

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.3CVSS6.9AI score0.02241EPSS
Exploits1References7
nvd
nvd
added 2026/04/09 8:16 p.m.11 views

CVE-2026-5974

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

9.8CVSS0.02241EPSS
Exploits1References6
attackerkb
attackerkb
added 2026/04/09 7:30 p.m.1 views

CVE-2026-5974

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.5CVSS6.8AI score0.02241EPSS
Exploits1References7Affected Software1
cve
cve
added 2026/04/09 7:30 p.m.19 views

CVE-2026-5974

FoundationAgents MetaGPT

9.8CVSS6.8AI score0.02241EPSS
Exploits1References6Affected Software1
osv
osv
added 2026/04/09 7:30 p.m.3 views

CVE-2026-5974 FoundationAgents MetaGPT terminal.py Bash.run os command injection

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

6.9CVSS6.9AI score0.02241EPSS
Exploits1References8
cvelist
cvelist
added 2026/04/09 7:30 p.m.26 views

CVE-2026-5974 FoundationAgents MetaGPT terminal.py Bash.run os command injection

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.5CVSS0.02241EPSS
Exploits1References6
cnnvd
cnnvd
added 2026/04/09 12:0 a.m.7 views

MetaGPT 操作系统命令注入漏洞

MetaGPT is a multi-agent framework developed by MetaGPT Inc. Versions of MetaGPT 0.8.1 and earlier contained a vulnerability related to operating system command injection. This vulnerability stemmed from the Bash.run function in the metagpt/tools/libs/terminal.py library, which could allow attack...

9.8CVSS7.1AI score0.02241EPSS
Exploits1References6
Rows per page
Query Builder