Dashboard Vulnerabilities News Research Archive Stats Dataset

aisecwatch.com

Real-time AI security monitoring. Tracking AI-related vulnerabilities, safety and security incidents, privacy risks, research developments, and policy changes.

Navigation

Vulnerabilities News Research Digest Archive Newsletter Archive Subscribe Data Sources Statistics Dataset API Integrations Widget RSS Feed

Maintained by

Truong (Jack) Luu

Information Systems Researcher

CrewAI Vulnerabilities Expose Devices to Hacking | AI Sec Watch

CrewAI Vulnerabilities Expose Devices to Hacking

highnews

security

Source: SecurityWeekMarch 31, 2026

Summary

CrewAI, an AI framework, has vulnerabilities that attackers can exploit using prompt injection (tricking an AI by hiding malicious instructions in its input) to chain together bugs and escape the sandbox (a restricted environment meant to contain the AI's actions) to run arbitrary code on a device.

Classification

Attack Type

Prompt Injection

Attack SophisticationModerate

Impact (CIA+S)

integrityavailability

Affected Vendors

Related Issues

CVE-2026-30308: In its design for automatic terminal command execution, HAI Build Code Generator offers two options: Execute safe comman

Similar attackNVD/CVE Database

AI Kill Chain in Action: Devin AI Exposes Ports to the Internet with Prompt Injection

Monthly digest — independent AI security research

Original source: https://www.securityweek.com/crewai-vulnerabilities-expose-devices-to-hacking/

First tracked: March 31, 2026 at 02:00 PM

Classified by LLM (prompt v3) · confidence: 85%

AI Component TargetedAgent

Embrace The Red

CVE-2024-45989: Monica AI Assistant desktop application v2.3.0 is vulnerable to Exposure of Sensitive Information to an Unauthorized Act

Similar attackNVD/CVE Database

CVE-2026-4399: Prompt injection vulnerability in 1millionbot Millie chatbot that occurs when a user manages to evade chat restrictions

Similar attackNVD/CVE Database

CVE-2025-66404: MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is

Similar attackNVD/CVE Database