Description
A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of complexity is needed for the attack. The exploitation is known to be difficult. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Published: 2026-06-07
Score: 2.3 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability resides in FoundationAgents MetaGPT’s `check_cmd_exists` function, where manipulation of the `mermaid.path` argument allows an attacker to inject arbitrary shell commands. This defect can lead to execution of any OS command within the context in which the application runs, effectively compromising confidentiality, integrity, and availability of the affected system.

Affected Systems

The issue affects FoundationAgents’ MetaGPT product up to version 0.8.2. Users running these releases, irrespective of operating system, are at risk if the `check_cmd_exists` function processes untrusted input for the `mermaid.path` setting.

Risk and Exploitability

The CVSS score of 2.3 indicates a low severity rating, and the EPSS score is not available, suggesting limited exploitation data. The vulnerability can be triggered remotely, but the attac­k requires a high degree of complexity and is known to be difficult to exploit. The CVE is not listed in CISA’s Known Exploited Vulnerabilities catalog. Nonetheless, the publicly disclosed exploit indicates potential risk, especially if the application is exposed to untrusted users or networks. Monitoring for official patches remains prudent.

Generated by OpenCVE AI on June 7, 2026 at 09:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Validate and sanitize all input supplied to the mermaid.path argument, enforcing a whitelist of acceptable values to eliminate unintended shell command characters.
  • Modify the implementation of check_cmd_exists to use a safe execution interface, such as subprocess.run with shell=False, rather than relying on direct shell calls that are vulnerable to injection.
  • Stay informed of future releases from FoundationAgents and apply any official security updates immediately once they become available.

Generated by OpenCVE AI on June 7, 2026 at 09:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 07 Jun 2026 08:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of complexity is needed for the attack. The exploitation is known to be difficult. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Title FoundationAgents MetaGPT common.py check_cmd_exists command injection
First Time appeared Foundationagents
Foundationagents metagpt
Weaknesses CWE-74
CWE-77
CPEs cpe:2.3:a:foundationagents:metagpt:*:*:*:*:*:*:*:*
Vendors & Products Foundationagents
Foundationagents metagpt
References
Metrics cvssV2_0

{'score': 4.6, 'vector': 'AV:N/AC:H/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 5, 'vector': 'CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 2.3, 'vector': 'CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Foundationagents Metagpt
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-07T07:00:12.675Z

Reserved: 2026-06-06T15:53:23.883Z

Link: CVE-2026-11455

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-07T09:16:20.403

Modified: 2026-06-07T09:16:20.403

Link: CVE-2026-11455

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-07T09:30:15Z

Weaknesses