CrewAI Gets Four CVEs in One Day: CERT/CC Drops a Critical Vulnerability Cluster on the 48K-Star Agent Framework
CERT/CC published four vulnerabilities in CrewAI — including a CVSS 9.6 critical RCE — that chain together through prompt injection. The flaws expose a systemic pattern: AI agent frameworks that silently downgrade security when infrastructure isn't perfect.