Description
PraisonAI before 1.5.115 contains an information disclosure vulnerability in the MultiAgentLedger component that allows attackers to access sensitive data by registering agents with duplicate IDs. Attackers can exploit the lack of agent ID uniqueness enforcement to share ledger instances and expose system prompts and conversation history between agents.
Published: 2026-06-18
Score: 7.1 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

PraisonAI versions prior to 1.5.115 contain a flaw in the MultiAgentLedger component that allows duplication of agent identifiers. This lack of enforcement enables an attacker to register agents with the same ID, thereby accessing shared ledger data and exposing sensitive system prompts and conversation histories. The vulnerability is classified as CWE‑668 and results in the unintended disclosure of confidential information to entities that can register duplicate agents.

Affected Systems

The affected product is PraisonAI; any deployment running a version older than 1.5.115 is impacted. No specific sub‑components outside the MultiAgentLedger are identified as vulnerable.

Risk and Exploitability

The CVSS score of 7.1 indicates a high severity impact. EPSS data is not available, so the current exploitation probability cannot be quantified, and the vulnerability is not listed in CISA KEV. Based on the description, the attack vector is inferred to require the ability to register agents—likely through the public or internal API used for agent creation—however the exact environment prerequisites are not specified in the advisory.

Generated by OpenCVE AI on June 19, 2026 at 00:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update PraisonAI to version 1.5.115 or later where agent ID uniqueness is enforced.
  • If an immediate upgrade is not feasible, restrict network access to the MultiAgentLedger API or implement firewall rules to limit who can submit agent registrations.
  • Monitor system logs for duplicate agent ID registration attempts and investigate any unauthorized activity.

Generated by OpenCVE AI on June 19, 2026 at 00:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 18 Jun 2026 23:00:00 +0000

Type Values Removed Values Added
Description PraisonAI before 1.5.115 contains an information disclosure vulnerability in the MultiAgentLedger component that allows attackers to access sensitive data by registering agents with duplicate IDs. Attackers can exploit the lack of agent ID uniqueness enforcement to share ledger instances and expose system prompts and conversation history between agents.
Title PraisonAI - Information Disclosure via Shared MultiAgentLedger State
First Time appeared Praison
Praison praisonai
Weaknesses CWE-668
CPEs cpe:2.3:a:praison:praisonai:*:*:*:*:*:*:*:*
Vendors & Products Praison
Praison praisonai
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Praison Praisonai
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-18T22:12:24.781Z

Reserved: 2026-06-18T15:57:20.434Z

Link: CVE-2026-56077

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-19T00:30:17Z

Weaknesses
  • CWE-668

    Exposure of Resource to Wrong Sphere