CVE-2026-2286 in CrewAIinformation

Résumé (Anglaise)

CrewAI contains a server-side request forgery vulnerability that enables content acquisition from internal and cloud services, facilitated by the RAG search tools not properly validating URLs provided at runtime.

Responsable

certcc

Réserver

10/02/2026

Divulgation

30/03/2026

Entrées

Montrer plus

• Description
• Changements
• Renseignements sur les menaces
• API/JSON