AgentReadyHomeAgent Listing

← Kusog aiAgent

Kusog aiAgent — agentic threat model

7.9AIVSS 7.9 · High

Kusog aiAgent presents a moderate security risk primarily centered around data privacy and integrity, driven by its advanced document retrieval (3D memory) and task management features. The lack of explicit security controls or sandboxing in its public listing increases the potential impact of memory poisoning or unauthorized data access.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 6.3AARS uplift 1.63Factor sum 4.4/10Threat ×1.0Mitigation ×1.0
Autonomy of Action
0.40
Goal-Driven Planning
0.50
Self-Modification
0.20
Dynamic Tool Use
0.40
Persistent Memory
0.70
Contextual Awareness
0.60
Dynamic Identity
0.30
Multi-Agent Interactions
0.20
Non-Determinism
0.60
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — The underlying foundation models for text, voice synthesis, and multimedia generation are unspecified, leaving the agent vulnerable to standard LLM risks like adversarial prompt injection or voice cloning exploitation.

L2 · Data Operations✓ mapped

The agent utilizes 'Advanced Document Control' and 'Semantic Knowledge Mapping' to structure and retrieve user data. This creates a high-value target for data exfiltration, unauthorized document access, and semantic search manipulation via poisoned files.

L3 · Agent Frameworks✓ mapped

The orchestration framework manages '3D memory' and 'Dynamic Task Management'. Vulnerabilities here include memory poisoning (injecting malicious instructions into the long-term memory) and insecure tool execution during task automation.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — As a closed-source, paid SaaS platform, the hosting environment, sandboxing of document processing tools, and secrets management practices are completely opaque.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — There is no mention of real-time monitoring, guardrails, or logging mechanisms to detect anomalous agent behavior or malicious inputs.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — The listing does not disclose any compliance certifications (e.g., SOC2, GDPR), identity management standards, or access control policies for user documents.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — While users can create multiple 'personalized AI companions', it is unclear if these companions interact autonomously with each other or external agent ecosystems.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).