low severityCAMEL-AI role-playing agents

Agents may ignore role instructions and follow malicious injected prompts in untrusted inputs during role-playing sessions, potentially leaking data or executing unintended actions.

Root cause

No specific root cause identified. CAMEL-AI role-playing relies on LLM prompt engineering which is inherently susceptible to prompt injection like all LLMs, where untrusted inputs can override role instructions.

camel-airole-playingprompt-injectionllm-vulnerabilityagent-framework

Citations

https://github.com/camel-ai/camel/security