VulnerableCode Package Details - pkg:pypi/agno@2.2.2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/agno@2.2.2

Essentials
History (1)

purl	pkg:pypi/agno@2.2.2

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-14eb-zk7z-aff1	Agno session state overwrites between different sessions/users Under certain conditions (under high concurrency), when `session_state` is passed to an Agent or Team during run or arun calls, a race condition can occur, causing a `session_state` to be assigned and persisted to the incorrect session. This may result in user data from one session being exposed to another user.	CVE-2025-64168 GHSA-vw84-hprm-cxmm

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:48:24.312709+00:00	GitLab Importer	Fixing	VCID-14eb-zk7z-aff1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/agno/CVE-2025-64168.yml	38.6.0