PYSEC-2026-2637

See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/metagpt/PYSEC-2026-2637.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2026-2637
Aliases
Published
2026-07-13T15:46:13.813271Z
Modified
2026-07-13T16:32:14.634694994Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVSS Calculator
  • 1.9 (Low) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P CVSS Calculator
Summary
FoundationAgents MetaGPT: Deserialization through flawed argument mapping via Message.check_instruct_content()
Details

A weakness has been identified in FoundationAgents MetaGPT up to 0.8.2. This affects the function Message.checkinstructcontent of the file metagpt/schema.py. Executing a manipulation of the argument mapping can lead to deserialization. The attack is restricted to local execution. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.

References

Affected packages

PyPI / metagpt

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
0.8.2

Affected versions

0.*
0.1
0.3.0
0.4.0
0.5.0
0.5.1
0.5.2
0.6.0
0.6.1
0.6.2
0.6.3
0.6.4
0.6.5
0.6.6
0.6.7
0.6.8
0.6.9
0.6.10
0.6.11
0.6.12
0.6.13
0.7.0
0.7.1
0.7.2
0.7.3
0.7.4
0.7.6
0.7.7
0.8.0
0.8.1
0.8.2

Database specific

source
"https://github.com/pypa/advisory-database/blob/main/vulns/metagpt/PYSEC-2026-2637.yaml"