cbcvebase.

Foundation Agents Metagpt vulnerabilities

4 known vulnerabilities affecting foundation_agents/metagpt.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2026-0761P2CRITICALCVSS 9.8v0.8.12026-01-23
CVE-2026-0761 [CRITICAL] CWE-94 CVE-2026-0761: Foundation Agents MetaGPT actionoutput_str_to_mapping Code Injection Remote Code Execution Vulnerabi Foundation Agents MetaGPT actionoutput_str_to_mapping Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foundation Agents MetaGPT. Authentication is not required to exploit this vulnerability. The specific flaw exists within the actionoutput_str_to_ma
nvd
CVE-2026-0760P2CRITICALCVSS 9.8v0.8.12026-01-23
CVE-2026-0760 [CRITICAL] CWE-502 CVE-2026-0760: Foundation Agents MetaGPT deserialize_message Deserialization of Untrusted Data Remote Code Executio Foundation Agents MetaGPT deserialize_message Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foundation Agents MetaGPT. Authentication is not required to exploit this vulnerability. The specific flaw exists within the deserializ
nvd
CVE-2026-4515P3MEDIUMCVSS 6.3v0.8.0v0.8.12026-03-21
CVE-2026-4515 [MEDIUM] CWE-74 CVE-2026-4515: A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function c A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function code_generate of the file metagpt/ext/aflow/scripts/operator.py. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about t
nvd
CVE-2026-4516P3MEDIUMCVSS 6.3v0.8.0v0.8.12026-03-21
CVE-2026-4516 [MEDIUM] CWE-74 CVE-2026-4516: A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unkno A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file metagpt/actions/di/write_analysis_code.py of the component DataInterpreter. The manipulation results in injection. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor was contac
nvd
Foundation Agents Metagpt vulnerabilities | cvebase