CVE-2026-40113: PraisonAI is a multi-agent teams system. Prior to 4.5.128, deploy.py constructs a single comma-delimited string for the
Summary
PraisonAI, a system for managing multiple AI agents working together, had a vulnerability in versions before 4.5.128 where the deploy.py file didn't check if certain configuration values (openai_model, openai_key, and openai_base) contained commas before putting them into a command. Since commas are used as separators in the gcloud deployment command, an attacker could sneak extra commas into these values to inject arbitrary environment variables (settings that control how the deployed service behaves) into the cloud service.
Solution / Mitigation
Upgrade PraisonAI to version 4.5.128 or later, which fixes this vulnerability.
Vulnerability Details
8.4(high)
EPSS: 0.0%
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
local
low
low
none
April 9, 2026
Classification
Affected Vendors
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-40113
First tracked: April 9, 2026 at 08:07 PM
Classified by LLM (prompt v3) · confidence: 85%