Arbitrary OS Command Execution in Agentic-Flow AI Agent Orchestration Platform
CVE-2026-58195

8.8HIGH

Key Information:

Vendor

Ruvnet

Vendor
CVE Published:
17 July 2026

What is CVE-2026-58195?

The Agentic-Flow platform, an AI agent orchestration tool, contains a vulnerability that allows attackers to execute arbitrary OS commands. This flaw is due to the interpolation of user-controlled parameters directly into shell command strings, which are then executed with the permissions of the MCP server user. This security issue arises in various standalone and server files used by the platform, and was addressed in version 2.0.14, underscoring the importance of updating to the latest version to mitigate potential threats.

Affected Version(s)

agentic-flow < 2.0.14

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.