CVE-2026-34954
HIGHCVSS v3
8.6
HIGH
EPSS Score
—
exploit probability
CISA KEV
No
known exploited
Exploitation
—
SSVC status
Description
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
Technical Details
- CVSS v3 Vector
- 3.1
- Published
- 4/3/2026
- Last Modified
- 4/9/2026
Frequently Asked Questions
What is CVE-2026-34954?
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
Is CVE-2026-34954 actively exploited?
Active exploitation of CVE-2026-34954 has not been confirmed. The EPSS score is N/A%, indicating the estimated probability of exploitation in the next 30 days.
What is the CVSS score for CVE-2026-34954?
CVE-2026-34954 has a CVSS v3 base score of 8.6 (HIGH severity), with vector string 3.1.
Is CVE-2026-34954 affecting your environment?
Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.