Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2025-0213 | composio >=0.5.40 is vulnerable to Command Execution in composio_openai, composio_claude, and composio_julep via the handle_tool_calls function. |
 Github GHSA |
GHSA-8h93-28hg-fj84 | Composio Command Execution vulnerability |
Wed, 16 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Wed, 16 Jul 2025 00:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Composio
Composio composio |
|
| CPEs | cpe:2.3:a:composio:composio:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Composio
Composio composio |
Fri, 31 Jan 2025 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-77 | |
| Metrics |
cvssV3_1
|
Wed, 08 Jan 2025 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | composio >=0.5.40 is vulnerable to Command Execution in composio_openai, composio_claude, and composio_julep via the handle_tool_calls function. | |
| References |
|
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-01-31T17:49:10.424Z
Reserved: 2024-11-20T00:00:00.000Z
Link: CVE-2024-53526
Vulnrichment
Updated: 2025-01-10T16:44:36.889Z
NVD
Status : Analyzed
Published: 2025-01-08T19:15:37.753
Modified: 2025-07-16T00:38:50.017
Link: CVE-2024-53526
Redhat
No data.
OpenCVE Enrichment
No data.