CVE-2025-8697 agentUniverse MCPSessionManager/MCPTool/MCPToolkit StdioServerParameters os command injection

A vulnerability was found in agentUniverse up to 0.0.18 and classified as critical. This issue affects the function StdioServerParameters of the component MCPSessionManager/MCPTool/MCPToolkit. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has be...

agentUniverse 命令注入漏洞

agentUniverse is agentuniverse-ai open source an LLM multi-agent framework that allows developers to easily build multi-agent applications. A command injection vulnerability exists in agentUniverse 0.0.18 and earlier versions, which stems from misuse of the function StdioServerParameters in the...