CVE-2025-8665

Name of the Vulnerable Software and Affected Versions agno-agi agno versions up to 1.7.5

Description A critical issue exists in the Model Context Protocol Handler component of agno-agi agno. The MCPTools/MultiMCPTools function within the libs/agno/agno/tools/mcp.py library is susceptible to OS command injection through manipulation of the command argument. This issue can be exploited remotely. The exploit has been publicly disclosed.

Recommendations Versions prior to 1.7.5: At the moment, there is no information about a newer version that contains a fix for this vulnerability.