cai-framework
PyPI2 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting cai-frameworkpage 1 of 1
- CVE-2025-67511CRITICALCVSS 9.6EG 9.62025-12-11
vulnerable: 0.3.10 ... 0.5.9 (17 versions)
Cybersecurity AI (CAI) is an open-source framework for building and deploying AI-powered offensive and defensive automation. Versions 0.5.9 and below are vulnerable to Command Injection through the run_ssh_command_with_credentials() functi…
- CVE-2026-25130CRITICALCVSS 9.6EG 9.62026-01-30
vulnerable: 0.3.10 ... 0.5.9 (18 versions)
Cybersecurity AI (CAI) is a framework for AI Security. In versions up to and including 0.5.10, the CAI (Cybersecurity AI) framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed…
Check whether cai-framework is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for cai-framework CVEs against the assets you own.
Start Free Scan →