composio >=0.5.40 is vulnerable to Command Execution in composioopenai, composioclaude, and composiojulep via the handletool_calls function.
{
"github_reviewed_at": "2025-01-31T21:06:18Z",
"nvd_published_at": "2025-01-08T19:15:37Z",
"github_reviewed": true,
"cwe_ids": [
"CWE-77"
],
"severity": "MODERATE"
}