Remote Code Execution in PraisonAI's Multi-Agent System
CVE-2026-40160

7.1HIGH

Key Information:

Vendor: Mervinpraison
Status: Praisonaiagents
Vendor: CVE Published:; 10 April 2026

🔔 Create Mervinpraison Vulnerability Alert

What is CVE-2026-40160?

PraisonAI's multi-agent system, prior to version 1.5.128, contains a vulnerability in the web_crawl feature. The httpx fallback path allows user-supplied URLs to be directly processed without host validation. This lack of security checks permits an agent to crawl internal URLs, including cloud metadata endpoints (169.254.169.254), which can expose sensitive information. This issue arises in default installations and can lead to significant security risks, as the collected data may be visible to attackers.

Affected Version(s)

PraisonAIAgents < 1.5.128

References

https://github.com/MervinPraison/PraisonAI/security/advis...

x_refsource_CONFIRM

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 10, 2026
Vulnerability Reserved
Apr 9, 2026

CVE-2026-40160 Data

JSON