CVE-2026-11455
5.0 MEDIUMA vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2
Published: 2026-06-07 · Last updated: 2026-06-08
Severity and scoring
- CVSS
- 5.0 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
- CWE
- CWE-74, CWE-77
Description
A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of complexity is needed for the attack. The exploitation is known to be difficult. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-11455
- [Other]https://github.com/FoundationAgents/MetaGPT/
- [Other]https://github.com/FoundationAgents/MetaGPT/issues/2037
- [Other]https://vuldb.com/cve/CVE-2026-11455
- [Other]https://vuldb.com/submit/828206
- [Other]https://vuldb.com/vuln/369074
- [Other]https://vuldb.com/vuln/369074/cti
- [Other]https://www.notion.so/asuka39/MetaGPT-Command-Injection-via-Mermaid-path-Configuration-35fe35b8556880b29113c8c1b414a8b2?source=copy_link
Related CVEs
Same CWE
- CVE-2026-46546 — Frappe Learning Management System (LMS) is a learning system that helps users structure their content
- CVE-2026-47634 — Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized ... (7.3 HIGH)
- CVE-2026-42835 — Improper neutralization of special elements in output used by a downstream component ('injection') in Microsoft Teams for Android allows ... (8.1 HIGH)
- CVE-2026-11572 — Versions of the package degit before 2.8.6, from 3.0.0 and before 3.3.1 are vulnerable to Command Injection due to improper sanitisation ... (8.8 HIGH)
- CVE-2026-8795 — A YAML injection vulnerability exists in the Windows.Collectors.Remapping artifact of Rapid7 Velociraptor before version 0.76.6 (7.8 HIGH)