Fetching from the wire…
Security2026-06-08 · source-backed
CVE-2026-44338 (CVSS 7.3) comes from PraisonAI's legacy Flask api_server.py shipping with AUTH_ENABLED=False and AUTH_TOKEN=None, exposing GET /agents and POST /chat to anyone on the network. Sysdig watched a scanner identifying as "CVE-Detector/1.0" hit the exact endpoint under four hours after the advisory dropped. Affects 2.5.6–4.6.33, fixed in 4.6.34. The lesson isn't "patch faster," it's "insecure-by-default is now exploited at machine speed." If your agent framework ships auth off, treat that as a shipped vulnerability, not a config choice.
Each link below shares sources, entities, or timing with this story.
Sysdig criticizes Langflow / Shared entities / Same source domain / Earlier coverage
Linked by a graph relationship (Sysdig criticizes Langflow); both cover CVE, CVSS, Post, Sysdig; reported by the same outlet (sysdig.com).
Sysdig criticizes PraisonAI / Shared entities / Shared topic / Earlier coverage
Linked by a graph relationship (Sysdig criticizes PraisonAI); both cover CVE, CVSS, PraisonAI; overlapping topics (agent, endpoint, praisonai).
Sysdig criticizes Langflow / Shared entities / Same source domain / Shared topic / What happened next
Linked by a graph relationship (Sysdig criticizes Langflow); both cover CVE, CVSS; reported by the same outlet (sysdig.com).
Sysdig criticizes Langflow / Shared entity: Sysdig / Same source domain / What happened next / Tension
Linked by a graph relationship (Sysdig criticizes Langflow); both cover Sysdig; reported by the same outlet (sysdig.com).
Sysdig criticizes Langflow / Shared entities / Earlier coverage
Linked by a graph relationship (Sysdig criticizes Langflow); both cover CVSS, Sysdig; earlier CVSS coverage from 2026-03-23.
Shared entities / Earlier coverage / Tension
Both cover CVE, CVSS, POST; earlier CVE coverage from 2026-02-21; pushes against this story (but).
Sysdig criticizes PraisonAI / Shared entities / Earlier coverage
Linked by a graph relationship (Sysdig criticizes PraisonAI); both cover CVE, Sysdig; earlier CVE coverage from 2026-06-02.
Sysdig criticizes Langflow / Shared entities / Earlier coverage
Linked by a graph relationship (Sysdig criticizes Langflow); both cover CVE, CVSS; earlier CVE coverage from 2026-02-27.