VulnerableCode Package Details - pkg:pypi/agno@2.0.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/agno@2.0.0

Essentials
History (1)

purl	pkg:pypi/agno@2.0.0

Next non-vulnerable version	2.2.2
Latest non-vulnerable version	2.2.2
Risk

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-14eb-zk7z-aff1 Aliases: CVE-2025-64168 GHSA-vw84-hprm-cxmm	Agno session state overwrites between different sessions/users Under certain conditions (under high concurrency), when `session_state` is passed to an Agent or Team during run or arun calls, a race condition can occur, causing a `session_state` to be assigned and persisted to the incorrect session. This may result in user data from one session being exposed to another user.	2.2.2 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:48:24.308036+00:00	GitLab Importer	Affected by	VCID-14eb-zk7z-aff1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/agno/CVE-2025-64168.yml	38.6.0