Vulnerability  ·  2026-07-17

PraisonAI — Call API Agent Invocation Authentication Bypass When Auth Disabled Flag Misconfigured

VulnerabilityHigh impactGlobalCVE-2026-61435
PraisonAI's Call API agent-invocation endpoints could be reached remotely even when the auth-disabled safeguard was intended to restrict access to localhost, due to incorrect bind-host derivation logic.
This allows unauthenticated remote invocation of PraisonAI agents in deployments that believed they were protected by a localhost-only safeguard, exposing agent capabilities and any connected tools/data to the open network.
The safeguard intended to restrict the disabled-auth opt-out to localhost binding derived the bind host incorrectly, so agent invocation endpoints could remain reachable over the network even when operators believed the disabled-auth mode was localhost-only.
PraisonAI prior to 4.6.78
Upgrade to PraisonAI 4.6.78 or later; avoid PRAISONAI_CALL_AUTH=disabled in network-exposed deployments.
NVD CVE-2026-61435
See this in the live feed Explore related AI security and governance findings — updated every morning.
Open the feed →