Information security
fromSecurityWeek
19 hours agoVulnerability in MS-Agent AI Framework Can Allow Full System Compromise
CVE-2026-2256 in ModelScope MS-Agent framework allows arbitrary OS command execution through inadequate input sanitization in the Shell tool using regex-based blacklist filtering.