Home

Description

A vulnerability has been found in FoundationAgents MetaGPT up to 0.8.1. This issue affects the function Terminal.run_command in the library metagpt/tools/libs/terminal.py. The manipulation leads to os command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The identifier of the patch is d04ffc8dc67903e8b327f78ec121df5e190ffc7b. Applying a patch is the recommended action to fix this issue.

PUBLISHED Reserved 2026-04-09 | Published 2026-04-09 | Updated 2026-04-10 | Assigner VulDB




MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
HIGH: 7.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
HIGH: 7.3CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
7.5AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C

Problem types

OS Command Injection

Command Injection

Product status

0.8.0
affected

0.8.1
affected

Timeline

2026-04-09:Advisory disclosed
2026-04-09:VulDB entry created
2026-04-09:VulDB entry last update

Credits

Eric-c (VulDB User) reporter

References

vuldb.com/vuln/356526 (VDB-356526 | FoundationAgents MetaGPT terminal.py Terminal.run_command os command injection) vdb-entry technical-description

vuldb.com/vuln/356526/cti (VDB-356526 | CTI Indicators (IOB, IOC, TTP, IOA)) signature permissions-required

vuldb.com/submit/791745 (Submit #791745 | FoundationAgents MetaGPT 0.8.1 OS Command Injection (CWE-78)) third-party-advisory

github.com/FoundationAgents/MetaGPT/issues/1929 exploit issue-tracking

github.com/...ommit/d04ffc8dc67903e8b327f78ec121df5e190ffc7b patch

github.com/FoundationAgents/MetaGPT/ product

cve.org (CVE-2026-5972)

nvd.nist.gov (CVE-2026-5972)

Download JSON