Description
CrewAI contains a server-side request forgery vulnerability that enables content acquisition from internal and cloud services, facilitated by the RAG search tools not properly validating URLs provided at runtime.
Published: 2026-03-30
Score: n/a
EPSS: n/a
KEV: No
Impact: Data Exposure
Action: Patch if available
AI Analysis

Impact

CrewAI has a server‑side request forgery flaw that allows attackers to supply arbitrary URLs to the RAG search tools. The flaw permits the application to fetch content from internal and cloud services the system can reach, potentially leaking sensitive data or internal network information.

Affected Systems

CrewAI web application is affected. Specific product name is CrewAI. No public version information is listed; the flaw may apply to all current releases.

Risk and Exploitability

The vulnerability can be exploited by supplying a crafted URL to the RAG search feature. Because it relies on the application's ability to resolve internal network addresses, the attack is limited to machines and services reachable from the server hosting CrewAI. The risk is high if the premise user can supply malicious input or if the service is exposed to untrusted users. No EPSS score is reported, and the issue is not yet in the CISA KEV catalog, but SSRF bugs are typically considered severe due to the potential for outbound data exfiltration.

Generated by OpenCVE AI on March 30, 2026 at 17:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest CrewAI patch or upgrade to a version where the SSRF issue is remediated.
  • If a patch is unavailable, restrict the RAG search feature to only allow whitelisted URLs or disable the feature entirely.
  • Implement strict input validation or URL sanitization for any user‑supplied URLs before they are processed by CrewAI.
  • Monitor application logs for abnormal outbound requests and set alerting thresholds.

Generated by OpenCVE AI on March 30, 2026 at 17:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

References
Link Providers
https://www.kb.cert.org/vuls/id/221883 cve-icon cve-icon
History

Tue, 31 Mar 2026 03:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-200
CWE-918

Mon, 30 Mar 2026 16:15:00 +0000

Type Values Removed Values Added
Description CrewAI contains a server-side request forgery vulnerability that enables content acquisition from internal and cloud services, facilitated by the RAG search tools not properly validating URLs provided at runtime.
Title CVE-2026-2286
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published:

Updated: 2026-03-30T15:51:25.512Z

Reserved: 2026-02-10T14:42:04.145Z

Link: CVE-2026-2286

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-03-30T16:16:04.777

Modified: 2026-03-30T16:16:04.777

Link: CVE-2026-2286

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-30T20:55:32Z

Weaknesses