Arbitrary OS Command Execution in Agentic-Flow AI Agent Orchestration Platform
CVE-2026-58195
8.8HIGH
What is CVE-2026-58195?
The Agentic-Flow platform, an AI agent orchestration tool, contains a vulnerability that allows attackers to execute arbitrary OS commands. This flaw is due to the interpolation of user-controlled parameters directly into shell command strings, which are then executed with the permissions of the MCP server user. This security issue arises in various standalone and server files used by the platform, and was addressed in version 2.0.14, underscoring the importance of updating to the latest version to mitigate potential threats.
Affected Version(s)
agentic-flow < 2.0.14
