Vulnerability Description
PraisonAI is a multi-agent teams system. Prior to 4.5.115, the AgentService.loadAgentFromFile method uses the js-yaml library to parse YAML files without disabling dangerous tags (such as !!js/function and !!js/undefined). This allows an attacker to craft a malicious YAML file that, when parsed, executes arbitrary JavaScript code. An attacker can exploit this vulnerability by uploading a malicious agent definition file via the API endpoint, leading to remote code execution (RCE) on the server. This vulnerability is fixed in 4.5.115.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Praison | Praisonai | <= 4.5.114 |
Related Weaknesses (CWE)
References
- https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-32vr-5gcf-3pVendor Advisory
- https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-32vr-5gcf-3pVendor Advisory
FAQ
What is CVE-2026-39890?
CVE-2026-39890 is a vulnerability with a CVSS score of 9.8 (CRITICAL). PraisonAI is a multi-agent teams system. Prior to 4.5.115, the AgentService.loadAgentFromFile method uses the js-yaml library to parse YAML files without disabling dangerous tags (such as !!js/functio...
How severe is CVE-2026-39890?
CVE-2026-39890 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2026-39890?
Check the references section above for vendor advisories and patch information. Affected products include: Praison Praisonai.