3 matches found
cliz (=0.1.4), iointel (>=1.3.4 <=1.12.0) +1 more potentially affected by CVE-2025-8665 via agno (>=1.4.3 <=1.7.12)
agno PYPI version =1.4.3, =1.3.4, =0.1.0.post1, =0.1.0.post3 Source cves: CVE-2025-8665 Source advisory: SNYK:PYTHON-AGNO-11787823...
CVE-2025-8665
A vulnerability, which was classified as critical, has been found in agno-agi agno up to 1.7.5. This issue affects the function MCPTools/MultiMCPTools in the library libs/agno/agno/tools/mcp.py of the component Model Context Protocol Handler. The manipulation of the argument command leads to os...
CVE-2025-8665 agno-agi agno Model Context Protocol mcp.py MultiMCPTools os command injection
A vulnerability, which was classified as critical, has been found in agno-agi agno up to 1.7.5. This issue affects the function MCPTools/MultiMCPTools in the library libs/agno/agno/tools/mcp.py of the component Model Context Protocol Handler. The manipulation of the argument command leads to os...