What is the CVSS score of EUVD-2026-28595?

EUVD-2026-28595 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of PraisonAI are affected by EUVD-2026-28595?

PraisonAI MCP server versions prior to 4.6.9 contain a critical command injection vulnerability allowing unauthenticated remote attackers to execute arbitrary operating system commands on affected…. A patch is available.

PraisonAI EUVD-2026-28595

| CVE-2026-41497 CRITICAL

Command Injection (CWE-77)

2026-05-08 security-advisories@github.com

GHSA-9qhq-v63v-fv3j

RCE Python Command Injection

9.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Source Code Evidence Fetched

May 08, 2026 - 14:32 vuln.today

Analysis Generated

May 08, 2026 - 14:32 vuln.today

CVE Published

May 08, 2026 - 14:16 nvd

CRITICAL 9.8

DescriptionNVD

PraisonAI is a multi-agent teams system. Prior to version 4.6.9, the fix for PraisonAI's MCP command handling does not add a command allowlist or argument validation to parse_mcp_command(), allowing arbitrary executables like bash, python, or /bin/sh with inline code execution flags to pass through to subprocess execution. This issue has been patched in version 4.6.9.

AnalysisAI

Command injection in PraisonAI's MCP server command handler enables remote unauthenticated attackers to execute arbitrary operating system commands. The vulnerability exists in parse_mcp_command() which accepts MCP server commands without validating executables or arguments, allowing injection of shell commands like 'bash -c', 'python -c', or '/bin/sh -c' with inline code execution. …

RemediationAI

Within 24 hours: Inventory all PraisonAI deployments and identify current versions; isolate affected systems from production networks if immediate patching is not feasible. Within 7 days: Apply vendor-released patch version 4.6.9 (upstream version 1.5.69) to all PraisonAI instances; validate patch deployment through version verification. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

EUVD-2026-28595 vulnerability details – vuln.today

Back

PraisonAI EUVD-2026-28595

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code