๐Ÿ” CVE Alert

CVE-2026-2287

CRITICAL 9.8

CVE-2026-2287

CVSS Score
9.8
EPSS Score
0.0%
EPSS Percentile
5th

CrewAI does not properly check that Docker is still running during runtime, and will fall back to a sandbox setting that allows for RCE exploitation.

Vendor crewai
Product crewai
Published Mar 30, 2026
Last Updated Apr 1, 2026
Stay Ahead of the Next One

Get instant alerts for crewai crewai

Be the first to know when new critical vulnerabilities affecting crewai crewai are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

CrewAI / CrewAI
1.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
kb.cert.org: https://www.kb.cert.org/vuls/id/221883