{
  "title": "CVE of the day — CVE-2026-61447 (CVSS 10,0, critical)",
  "title_variants": [
    {
      "id": "v0",
      "title": "CVE of the day — CVE-2026-61447 (CVSS 10,0, critical)"
    },
    {
      "id": "v1",
      "title": "CVSS 10.0"
    },
    {
      "id": "v2",
      "title": "CVE-2026-61447: critical vulnerability, CVSS 10,0/10, type code injection, exploitable"
    }
  ],
  "description": "CVE-2026-61447: critical vulnerability, CVSS 10,0/10, type code injection, exploitable remotely, without privileges, without user interaction. PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent. execute python() that executes LLM-generated Python code without AST..",
  "keywords": [
    "c",
    "cve-2026-61447",
    "vulnerability",
    "critical vulnerability",
    "cwe-94",
    "cvs",
    "cybersecurity",
    "cybersecurity",
    "♪",
    "security update"
  ],
  "scenes": [
    {
      "title": "CVE-2026- 61447",
      "subtitle": "CVSS 10.0",
      "text": "CVE-2026-61447: Critical gravity, CVSS score 10,0 out of 10 according to the National Vulnerability Database."
    },
    {
      "title": "Code injection",
      "subtitle": "code injection · CVSS v3.1",
      "text": "PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent. execute python() that executes LLM-generated Python code without AST validation, import restrictions, or sandbox enforcement.."
    },
    {
      "title": "EXPOSURE AND MITIGATION",
      "subtitle": "remotely exploitable, without privileges, without user interaction",
      "text": "Remotely exploitable Vulnerability, without privileges, without user interaction. Apply the update of the supplier promptly and consult the official notice on NVD."
    }
  ],
  "publication_date": "2026-07-13T00:30:30.335Z",
  "duration": 20,
  "topic": "cve",
  "lang": "en",
  "translation_group": "cve-2026-07-13",
  "poster": "cve-2026-07-13-en.jpg",
  "preview": "cve-2026-07-13-en.gif",
  "og_card": "cve-2026-07-13-en.og.jpg",
  "audiogram": "cve-2026-07-13-en.audiogram.mp4",
  "captions": "cve-2026-07-13-en.vtt",
  "generation": {
    "procedural": true,
    "ai_generated": [
      "background",
      "voice"
    ],
    "real_data_source": "official public API",
    "filmed_real_event": false,
    "disclosure": "Procedurally generated from real public-source data; abstract AI-generated backgrounds; synthetic (TTS) voice. No real event is filmed or altered."
  },
  "transcript_text": "CVE-2026-61447: Critical gravity, CVSS score 10,0 out of 10 according to the National Vulnerability Database. PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent. execute python() that executes LLM-generated Python code without AST validation, import restrictions, or sandbox enforcement.. Remotely exploitable Vulnerability, without privileges, without user interaction. Apply the update of the supplier promptly and consult the official notice on NVD.",
  "transcript": [
    {
      "start": 0,
      "end": 6.667,
      "text": "CVE-2026-61447: Critical gravity, CVSS score 10,0 out of 10 according to the National Vulnerability Database."
    },
    {
      "start": 6.667,
      "end": 13.333,
      "text": "PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent. execute python() that executes LLM-generated Python code without AST validation, import restrictions, or sandbox enforcement.."
    },
    {
      "start": 13.333,
      "end": 20,
      "text": "Remotely exploitable Vulnerability, without privileges, without user interaction. Apply the update of the supplier promptly and consult the official notice on NVD."
    }
  ]
}