CVE-2026-61439: PraisonAI versions before 4.6.78 contain a prompt injection defense misconfiguration where the block threshold defaults
Summary
PraisonAI versions before 4.6.78 have a security misconfiguration in their prompt injection defense (a security feature that blocks attempts to trick an AI into ignoring its instructions). The defense is set to only block attacks marked as CRITICAL severity, which means HIGH-severity attacks slip through without being blocked, allowing attackers to extract hidden system prompts and trigger unauthorized tool use.
Vulnerability Details
7.5(high)
EPSS: 0.0%
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
network
low
none
none
July 11, 2026
Classification
Affected Vendors
Related Issues
CVE-2026-34371: LibreChat is a ChatGPT clone with additional features. Prior to 0.8.4, LibreChat trusts the name field returned by the e
CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-61439
First tracked: July 11, 2026 at 02:07 PM
Classified by LLM (prompt v3) · confidence: 92%