CVE-2026-56075
Received Received - Intake
Arbitrary Shell Command Execution in PraisonAI

Publication date: 2026-06-18

Last updated on: 2026-06-18

Assigner: VulnCheck

Description
PraisonAI before 4.5.128 contains an arbitrary shell command execution vulnerability where the UI modules hardcode approval_mode to auto, overriding administrator configuration from PRAISON_APPROVAL_MODE environment variable. Authenticated attackers can instruct the LLM agent to execute arbitrary shell commands via subprocess.run with shell=True, bypassing the manual approval gate and insufficient command sanitization blocklists.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-18
Last Modified
2026-06-18
Generated
2026-06-19
AI Q&A
2026-06-19
EPSS Evaluated
N/A
NVD
CVE-2026-56075
EUVD
EUVD-2026-37959
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
praisonai praisonai to 4.5.128 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-863 The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

PraisonAI before version 4.5.128 has a vulnerability that allows authenticated attackers to execute arbitrary shell commands on the system. This happens because the UI modules hardcode the approval_mode to auto, which overrides the administrator's configuration set via the PRAISON_APPROVAL_MODE environment variable. As a result, attackers can bypass the manual approval process and command sanitization blocklists by instructing the LLM agent to run shell commands using subprocess.run with shell=True.

Impact Analysis

This vulnerability can have severe impacts as it allows an authenticated attacker to execute arbitrary shell commands on the affected system without manual approval. This can lead to unauthorized access, data compromise, system manipulation, or further exploitation of the environment.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-56075. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart