CVE-2026-61447
PraisonAI Code Execution Vulnerability Allows System Compromise
Halo Surface Signal: 3 out of 5 — possibly public-facing.
A vulnerability in PraisonAI's CodeAgent allows attackers to execute arbitrary Python code by influencing LLM output, potentially exfiltrating environment secrets and gaining host system control. This issue is relevant because it could lead to unauthorized access and system compromise.