AgentReadyHomeAgent Listing

← usememo.ai

usememo.ai — agentic threat model

5.1AIVSS 5.1 · Medium

usememo.ai is a low-risk educational tool focused on generating MCQs from lecture materials. Its primary security risks are limited to document parsing vulnerabilities, indirect prompt injection via uploaded materials, and basic data privacy concerns for user-uploaded content.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 4.3AARS uplift 0.77Factor sum 1.5/10Threat ×0.9Mitigation ×1.0
Autonomy of Action
0.10
Goal-Driven Planning
0.10
Self-Modification
0.00
Dynamic Tool Use
0.10
Persistent Memory
0.20
Contextual Awareness
0.40
Dynamic Identity
0.00
Multi-Agent Interactions
0.00
Non-Determinism
0.40
Opacity & Reflexivity
0.20

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — likely utilizes third-party LLMs to generate MCQs. The primary threat is indirect prompt injection where malicious instructions embedded in uploaded lecture materials manipulate the model's output.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — processes user-uploaded lecture materials. Key threats include data privacy leaks of proprietary academic content and potential extraction of sensitive information from the vector store or cache if not properly isolated.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — likely uses a simple prompt-generation pipeline rather than a complex agentic framework. Vulnerabilities would stem from insecure document parsing libraries used to extract text from PDFs or slides.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — standard web application deployment. Threats include typical web vulnerabilities, unauthorized access to user accounts, and lack of sandboxing for document processing microservices.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no mention of output validation or guardrails. The main risk is hallucinated or factually incorrect MCQs being presented to students without detection.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — as an open-source/freemium educational tool, it likely lacks rigorous enterprise compliance certifications (e.g., SOC2, FERPA alignment) unless self-hosted and configured manually.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — operates as a standalone utility with no apparent multi-agent orchestration or external marketplace integrations, making ecosystem risks negligible.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).