CVE-2026-15746: Strands Agents is an open-source Python SDK for building and running AI agents. The strands-agents-tools package provide
Summary
Strands Agents is an open-source Python SDK for building AI agents, and its elasticsearch_memory tool (used for storing agent memory) had a server-side request forgery vulnerability (SSRF, where an attacker tricks a server into making requests to unintended destinations). The tool allowed the LLM to control connection settings, so a crafted prompt could make it connect to an attacker's server and leak the operator's Elasticsearch API key in the process.
Solution / Mitigation
Upgrade to strands-agents-tools version 0.7.0 or later. Additionally, all operators should rotate their ELASTICSEARCH_API_KEY environment variable as a precautionary measure, even if there is no evidence the credential was exposed.
Vulnerability Details
6.5(medium)
EPSS: 0.0%
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
network
low
none
required
July 15, 2026
Classification
Affected Vendors
Related Issues
CVE-2026-34371: LibreChat is a ChatGPT clone with additional features. Prior to 0.8.4, LibreChat trusts the name field returned by the e
CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-15746
First tracked: July 16, 2026 at 02:07 AM
Classified by LLM (prompt v3) · confidence: 92%