Security Advisory

CVE-2026-34952

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-03 22:53:22

Last updated 2026-04-06 15:41:53

Assigner GitHub_M

State PUBLISHED

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.

← Browse all CVEs View on cve.org ↗