{"vulnerability": "cve-2026-44340", "sightings": [{"uuid": "51869d70-25a2-4b52-b014-9c800f8f8252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mleccwzhbj2k", "content": "CVE-2026-44340 - PraisonAI: Symlink-extraction bypass of `_safe_extractall` writes outside `dest_dir`\nCVE ID : CVE-2026-44340\n \n Published : May 8, 2026, 2:16 p.m. | 26\u00a0minutes ago\n \n Description : PraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_ext...", "creation_timestamp": "2026-05-08T17:53:08.986314Z"}, {"uuid": "0f8fa218-e6d8-4831-b117-177c6c101215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlektkylyt2k", "content": "\ud83d\udfe0 CVE-2026-44340 - High (7.5)\n\nPraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_extractall helper tha...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44340/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:25:37.167036Z"}, {"uuid": "679f4b84-60ec-4740-afff-19b375ca32d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://gist.github.com/alon710/f2ee63d3f5bee80df62671f0ee792142", "content": "# CVE-2026-44340: CVE-2026-44340: Arbitrary File Write via Symlink Traversal in PraisonAI Tar Extraction\n\n> **CVSS Score:** 8.7\n> **Published:** 2026-05-11\n> **Full Report:** https://cvereports.com/reports/CVE-2026-44340\n\n## Summary\nPraisonAI versions prior to 4.6.37 contain a path traversal vulnerability in the `_safe_extractall` function. The flaw allows an attacker to write arbitrary files outside the intended extraction directory via maliciously crafted tar archives containing unresolved symbolic links.\n\n## TL;DR\nA symlink-based path traversal in PraisonAI's recipe unpacking allows arbitrary file overwriting, potentially leading to remote code execution.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-59 (Link Following) / CWE-22 (Path Traversal)\n- **Attack Vector**: Network (Malicious Archive)\n- **CVSS 4.0 Score**: 8.7\n- **CVSS 3.1 Score**: 7.5\n- **Impact**: Arbitrary File Write / Remote Code Execution\n- **EPSS Score**: 0.00017\n- **Exploit Status**: PoC Available\n\n## Affected Systems\n\n- PraisonAI multi-agent teams system prior to 4.6.37\n- **PraisonAI**: < 4.6.37 (Fixed in: `4.6.37`)\n\n## Mitigation\n\n- Upgrade PraisonAI to version 4.6.37.\n- Execute PraisonAI within a Python 3.12+ environment to enable native tarfile extraction filters.\n- Apply the principle of least privilege to the OS account executing the PraisonAI cli tool.\n\n**Remediation Steps:**\n1. Identify all hosts running PraisonAI using package management tools or dependency scanners.\n2. Update the `praisonai` package to `==4.6.37` via pip or the relevant package manager.\n3. Verify the installed Python runtime is version 3.12 or greater.\n4. Audit application directories and system configuration files for unexpected modifications if malicious archives are suspected.\n\n## References\n\n- [NVD - CVE-2026-44340](https://nvd.nist.gov/vuln/detail/CVE-2026-44340)\n- [GitHub Security Advisory GHSA-9q28-ghcr-c4x3](https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-9q28-ghcr-c4x3)\n- [PraisonAI Fix Commit 0cec9fd1c3fc457c70712d97e21ea1caaa32ecda](https://github.com/MervinPraison/PraisonAI/commit/0cec9fd1c3fc457c70712d97e21ea1caaa32ecda)\n- [PraisonAI Release v4.6.37](https://github.com/MervinPraison/PraisonAI/commit/d15c57d80c11cab856bd5dd15ff7880f19d2ccf2)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-44340) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-05-11T14:10:29.000000Z"}]}