VIR Vulnerability Intelligence Relay

Package impact

PIP / praisonai

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2026-44334 high 8.4 8.4 20d ago PraisonAI has unauthenticated RCE via `tool_override.py` (CVE-2026-40287 patch bypass) python
CVE-2026-41496 high 8.1 8.1 20d ago PraisonAI: SQL Injection via unvalidated `table_prefix` in 9 conversation store backends (incomplete fix for CVE-2026-40315) python