modelscope/ms-agent

Releases32

Frequency3 weeks 1 day

Last Release 2 months ago

Stars4.29K

MS-Agent: a lightweight framework to empower agentic execution of complex tasks

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-2256 ↗	Mar 2, 2026Monday, 2 March 2026, 21:16	6.5 MEDIUM	—
A command injection vulnerability in ModelScope's ms-agent versions v1.6.0rc1 and earlier exists, allowing an attacker to execute arbitrary operating system commands through crafted prompt-derived input.