Which versions of FoundationAgents MetaGPT are affected by CVE-2026-6110?

CVE-2026-6110 is a critical code injection vulnerability in FoundationAgents MetaGPT versions up to 0.8.1 that allows unauthenticated attackers to execute arbitrary code remotely without user…. A patch is available.

Is there a public PoC exploit available for CVE-2026-6110?

Yes, a public proof-of-concept exploit is available for CVE-2026-6110. Prioritise patching immediately. EPSS: 0.1%.

FoundationAgents MetaGPT CVE-2026-6110

Q: What is the CVSS score of CVE-2026-6110?

CVE-2026-6110 has a CVSS 4.0 base score of 5.5 (Medium). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.1%.

EUVD-2026-21696 MEDIUM

Code Injection (CWE-94)

2026-04-12 VulDB

GHSA-xr7v-m9px-q4qj

RCE Code Injection

5.5

CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

PoC Detected

Apr 30, 2026 - 14:55 vuln.today

Public exploit code

CVSS changed

Apr 29, 2026 - 01:11 NVD

6.9 (MEDIUM) 5.5 (MEDIUM)

Severity Changed

Apr 12, 2026 - 03:22 NVD

HIGH MEDIUM

CVSS changed

Apr 12, 2026 - 03:22 NVD

7.3 (HIGH) 6.9 (MEDIUM)

Analysis Generated

Apr 12, 2026 - 02:49 vuln.today

EUVD ID Assigned

Apr 12, 2026 - 02:45 euvd

EUVD-2026-21696

Analysis Generated

Apr 12, 2026 - 02:45 vuln.today

Patch released

Apr 12, 2026 - 02:45 nvd

Patch available

CVE Published

Apr 12, 2026 - 02:00 nvd

MEDIUM 5.5

DescriptionNVD

A vulnerability was identified in FoundationAgents MetaGPT up to 0.8.1. This affects the function generate_thoughts of the file metagpt/strategy/tot.py of the component Tree-of-Thought Solver. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.

AnalysisAI

Code injection in FoundationAgents MetaGPT versions up to 0.8.1 allows unauthenticated remote attackers to execute arbitrary code via the Tree-of-Thought Solver's generate_thoughts function. Publicly available exploit code exists (GitHub issue #1933), and a vendor-supplied patch is available via pull request #1946. …

RemediationAI

Within 24 hours: Inventory all deployments of MetaGPT versions 0.8.1 and earlier; isolate affected instances from production networks if patching cannot be completed immediately. Within 7 days: Apply vendor-released patch via pull request #1946 to all MetaGPT installations and verify patching through version confirmation. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-6110 vulnerability details – vuln.today

Back

FoundationAgents MetaGPT CVE-2026-6110

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

FoundationAgents MetaGPT CVE-2026-6110

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code