Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
Microsoft MS-Agent allows hackers to run malicious commands
CVE-2026-2256
GHSA-4gc2-344q-r2rw
Summary
The Microsoft MS-Agent software has a security flaw that lets attackers execute unauthorized system commands. This means hackers could potentially take control of your system or access sensitive data. Update MS-Agent to the latest version to fix this vulnerability.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | ms-agent | <= 1.6.0rc1 | – |
Original title
MS-Agent vulnerable to Command Injection
Original description
A Command Injection vulnerability in ModelScope's MS-Agent versions v1.6.0rc1 and earlier exists, allowing an attacker to execute arbitrary operating system commands through crafted prompt-derived input.
nvd CVSS3.1
6.5
Vulnerability type
CWE-77
Command Injection
- https://github.com/Itamar-Yochpaz/CVE-2026-2256-PoC
- https://github.com/modelscope/ms-agent
- https://www.kb.cert.org/vuls/id/431821
- https://medium.com/@itamar.yochpaz/cve-2026-2256-from-ai-prompt-to-full-system-c...
- https://www.hiddenlayer.com/research/indirect-prompt-injection-of-claude-compute...
- https://nvd.nist.gov/vuln/detail/CVE-2026-2256
- https://github.com/advisories/GHSA-4gc2-344q-r2rw
Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026