AgentReadyHomeAgent ListingPricing

← Visional

Visional — agentic threat model

6.9AIVSS 6.9 · Medium

Visional is a hybrid AI-human shopping agent processing live video and real-time inventory to facilitate retail purchases. Its primary risk lies in the handling of financial transactions, user PII, and potential exploitation via adversarial visual or text inputs from untrusted retail environments.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 1.15Factor sum 4.6/10Threat ×1.0Mitigation ×0.8
Autonomy of Action
0.40
Goal-Driven Planning
0.60
Self-Modification
0.10
Dynamic Tool Use
0.50
Persistent Memory
0.40
Contextual Awareness
0.70
Dynamic Identity
0.30
Multi-Agent Interactions
0.50
Non-Determinism
0.60
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — Visional likely utilizes multimodal vision-language models to process live video and text. Threats include adversarial visual inputs (e.g., malicious QR codes or patterns on products) and prompt injection via retail product descriptions.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — The agent processes real-time inventory data, user profiles, and live video streams. Threats include data exfiltration of user shopping history, location data, and potential poisoning of local inventory databases.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — Orchestrates tools for inventory lookup, video streaming, and checkout. Threats include insecure tool integration with third-party retail APIs and manipulation of the checkout flow via prompt injection.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — Requires cloud hosting capable of low-latency video processing and secure API integrations. Threats include exposure of retail partner API keys and lack of sandboxing for dynamic web-scraping components.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — Monitoring is required to track the handoff between AI and human agents. Threats include blind spots in logging malicious user inputs or detecting anomalous purchasing behavior.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — Must comply with PCI-DSS for handling payments and privacy regulations (GDPR/CCPA) for video and location tracking. Threats include unauthorized access to payment credentials or session hijacking.

L7 · Agent Ecosystem✓ mapped

Visional operates in a hybrid ecosystem collaborating directly with human agents and interacting with diverse external retail platforms. Threats include trust abuse between the AI and human operators, social engineering of human agents by the AI, and cascading failures when external e-commerce APIs are compromised.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).

These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.