Multi-Agent System Vulnerability in PraisonAI by Mervin Praison
CVE-2026-44339

8.6HIGH

Key Information:

Vendor: Mervinpraison
Status: Praisonai
Vendor: CVE Published:; 8 May 2026

🔔 Create Mervinpraison Vulnerability Alert

What is CVE-2026-44339?

PraisonAI, a multi-agent system, contains a vulnerability that allows attackers to influence tool-call names. Prior to the updates in version 4.6.37 for PraisonAI and version 1.6.37 for PraisonAIAgents, the system resolved unresolved tool names against module globals and main. This can lead to the invocation of unintended application callables, as undeclared non-dangerous tool names may bypass the permission gates when the default _perm_allow is set to None.

Affected Version(s)

PraisonAI praisonaiagents < 1.6.37 < praisonaiagents 1.6.37

PraisonAI praisonai < 4.6.37 < praisonai 4.6.37

References

https://github.com/MervinPraison/PraisonAI/security/advis...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 8, 2026
Vulnerability Reserved
May 5, 2026

CVE-2026-44339 Data

JSON