CVE-2026-35002 CRITICAL

CVE-2026-35002: Agno < 2.3.24 field_type Eval Injection Arbitrary Code Execution

Vendor Agno
Product Agno
Weakness CWE-95 · Eval injection
Published April 2, 2026
Last update April 2, 2026

CVSS base score

9.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Agno versions prior to 2.3.24 contain an arbitrary code execution vulnerability in the model execution component that allows attackers to execute arbitrary Python code by manipulating the field_type parameter passed to eval(). Attackers can influence the field_type value in a FunctionCall to achieve remote code execution.

Key dates

02Disclosure timeline

April 2, 2026 CVE published
April 2, 2026 Record updated