Symlink Traversal Vulnerability in PraisonAI by Mervin Praison
CVE-2026-44340

8.7HIGH

Key Information:

Vendor

Mervinpraison

Status
Praisonai
Vendor
CVE Published:
8 May 2026

What is CVE-2026-44340?

PraisonAI, a multi-agent teams system, had a vulnerability in the _safe_extractall helper prior to version 4.6.37. This issue allows an attacker to exploit symlink and hardlink members within archive files. The lack of validation on member.linkname enables potential attackers to create a symlink that links to a path outside the designated extraction directory. Consequently, when an attacker includes a regular file that intersects through this symlink, they can manipulate the filesystem, writing arbitrary content to chosen locations. This vulnerability poses significant risks, and an update to version 4.6.37 is essential to mitigate these threats.

Affected Version(s)

PraisonAI < 4.6.37

References

https://github.com/MervinPraison/PraisonAI/security/advis...
x_refsource_CONFIRM

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.