CVE-2026-61443
Received Received - Intake

Remote Code Execution in PraisonAI via Path Containment Bypass

Vulnerability report for CVE-2026-61443, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-15

Last updated on: 2026-07-15

Assigner: VulnCheck

Description

PraisonAI before 1.6.78 contains a remote code execution vulnerability in SkillTools.run_skill_script() that executes scripts without path containment validation. Attackers can supply absolute file paths to execute arbitrary scripts from any filesystem location, including those outside the intended working directory.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-15
Last Modified
2026-07-15
Generated
2026-07-15
AI Q&A
2026-07-15
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
praisonai praisonai to 1.6.78 (exc)
praisonai skilltools to 1.6.78 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

PraisonAI before version 1.6.78 has a remote code execution vulnerability in the SkillTools.run_skill_script() function. It fails to validate file paths properly, allowing attackers to execute arbitrary scripts using absolute paths from any filesystem location, including outside the intended working directory.

Impact Analysis

Attackers could exploit this to run malicious scripts on your system, potentially gaining control over it. In Docker environments running as root, this could lead to full system compromise. The vulnerability allows bypassing intended restrictions, enabling unauthorized code execution.

Compliance Impact

This vulnerability could lead to unauthorized access or data breaches, violating GDPR and HIPAA requirements for data protection and access controls. Non-compliance risks include legal penalties, reputational damage, and loss of trust due to potential exposure of sensitive data.

Detection Guidance

To detect this vulnerability, check the installed version of PraisonAI. Run: pip show praisonai. If the version is below 1.6.78, the system is vulnerable. Additionally, review scripts using SkillTools.run_skill_script() for improper path validation or absolute path usage.

Mitigation Strategies

Immediately upgrade PraisonAI to version 1.6.78 or later using: pip install --upgrade praisonai. If upgrading is not possible, restrict access to the SkillTools.run_skill_script() function and ensure scripts are executed only from trusted directories.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-61443. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart