cbcvebase.

Jovancoding Network-Ai vulnerabilities

3 known vulnerabilities affecting jovancoding/network-ai.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1

Vulnerabilities

Page 1 of 1
CVE-2026-48814P2CRITICALCVSS 9.1fixed in 5.7.22026-06-17
CVE-2026-48814 [CRITICAL] CWE-306 CVE-2026-48814: Network-AI is a TypeScript/Node.js multi-agent orchestrator. In versions 5.7.1 and earlier, the MCP Network-AI is a TypeScript/Node.js multi-agent orchestrator. In versions 5.7.1 and earlier, the MCP SSE server allows unauthenticated cross-origin MCP tool invocation due to an empty default secret. This issue was partially addressed by CVE-2026-46701 in version 5.4.5 by closing the CORS flaw (with Access-Control-Allow-Origin now set only for local
cvelistv5ghsanvd
CVE-2026-42856P3HIGHCVSS 8.7fixed in 5.1.32026-05-11
CVE-2026-42856 [HIGH] CWE-306 CVE-2026-42856: Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport accepts JSON-RPC tools/call requests with no authentication, session, origin, or token check, and dispatches them directly to the orchestrator's tool registry. The default bind address is 0.0.0.0. As a result, any party with network reachability to the s
nvd
CVE-2026-54051CRITICAL≥ 0, < 5.9.12026-06-19
CVE-2026-54051 [CRITICAL] CWE-78 Network-AI: Improper Neutralization of Special Elements used in an OS Command Network-AI: Improper Neutralization of Special Elements used in an OS Command ## Summary The agent sandbox gates shell commands behind an allowlist (`SandboxPolicy.isCommandAllowed`), which THREAT_MODEL.md calls the main control against a compromised agent (Adversary 3.2). The allowlist glob-matches the whole command string, but `ShellExecutor` runs that string through `/bin/sh -c`. S
ghsa
Jovancoding Network-Ai vulnerabilities | cvebase