CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/21 9:35 p.m.•5 views

GHSA-CQP8-FCVH-X7R3 Pydantic AI: SSRF cloud-metadata blocklist bypass via IPv4-mapped IPv6 (Incomplete fix of CVE-2026-25580)

Summary When an application using Pydantic AI opts a URL into forcedownload='allow-local' which disables the default block on private/internal IPs, the cloud-metadata blocklist could be bypassed by encoding the metadata IP in an IPv6 transition form IPv4-mapped IPv6, 6to4, or NAT64. Dual-stack an...

6.8CVSS5.8AI score

Exploits0References3

GithubExploit•added 2026/05/18 12:9 a.m.•38 views

sec-recon-agent

sec-recon-agent Type-safe security triage built on Pydantic A...

5.8AI score

Exploits0

Veracode•added 2026/02/13 4:3 p.m.•3 views

Server-Side Request Forgery (SSRF)

Pydantic AI is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to improper validation of URLs in the download functionality when processing untrusted message history, which allows an attacker to supply malicious URLs that force the server to make unauthorized requests to...

8.6CVSS5.6AI score0.00018EPSS

Exploits1References3Affected Software2

RedhatCVE•added 2026/02/10 1:23 p.m.•3 views

CVE-2026-25904

The Pydantic-AI MCP Run Python tool configures the Deno sandbox with an overly permissive configuration that allows the underlying Python code to access the localhost interface of the host to perform SSRF attacks. Note - the "mcp-run-python" project is archived and unlikely to receive a fix...

5.8CVSS5.6AI score0.00013EPSS

Exploits0References1

NVD•added 2026/02/09 9:16 a.m.•2 views

CVE-2026-25904

5.8CVSS0.00013EPSS

Exploits0References1

ATTACKERKB•added 2026/02/09 8:51 a.m.•4 views

CVE-2026-25904

5.8CVSS5.6AI score0.00013EPSS

Veracode•added 2026/02/09 7:54 a.m.•3 views

Cross-site Scripting

Pydantic AI is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to insufficient validation of a user-controlled version parameter when constructing CDN URLs, allowing path traversal that causes the server to fetch and serve attacker-controlled JavaScript from the CDN, leading to...

7.1CVSS6.1AI score0.00016EPSS

Exploits0References3Affected Software2

RedhatCVE•added 2026/02/08 1:21 a.m.•3 views

CVE-2026-25640

A flaw was found in Pydantic AI. A remote attacker can exploit a path traversal vulnerability in the Pydantic AI web UI by crafting a malicious URL. This vulnerability arises from insufficient validation of the version query parameter, allowing the server to fetch and serve attacker-controlled HT...

7.1CVSS5.8AI score0.00016EPSS

Exploits0References5

RedhatCVE•added 2026/02/08 1:21 a.m.•2 views

CVE-2026-25580

A flaw was found in Pydantic AI. This Server-Side Request Forgery SSRF vulnerability allows a remote attacker to include malicious URLs within untrusted message history. When processed by the application, these URLs can force the server to make unauthorized HTTP requests to internal network...

8.6CVSS5.6AI score0.00018EPSS

Exploits1References5

Cvelist•added 2026/02/06 9:1 p.m.•26 views

CVE-2026-25580 Pydantic AI Affected by Server-Side Request Forgery (SSRF) in URL Download Handling

Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 0.0.26 to before 1.56.0, aServer-Side Request Forgery SSRF vulnerability exists in Pydantic AI's URL download functionality. When applications accept message history from untrusted sources,...

8.6CVSS0.00018EPSS

EUVD•added 2026/02/06 9:1 p.m.•1 views

EUVD-2026-5574

CVE•added 2026/02/06 9:1 p.m.•8 views

CVE-2026-25580

Pydantic AI has an SSRF vulnerability in its URL download path. From version 0.0.26 up to, but not including, 1.56.0, untrusted message history can cause the server to fetch URLs that reach internal resources or cloud metadata, exposing internal services or cloud credentials. The issue affects ap...

Exploits1References2Affected Software1

Vulnrichment•added 2026/02/06 9:1 p.m.•2 views

CVE-2026-25580 Pydantic AI Affected by Server-Side Request Forgery (SSRF) in URL Download Handling

8.6CVSS5.6AI score0.00018EPSS

OSV•added 2026/02/06 9:1 p.m.•3 views

CVE-2026-25580 Pydantic AI Affected by Server-Side Request Forgery (SSRF) in URL Download Handling

ATTACKERKB•added 2026/02/06 9:1 p.m.•2 views

Exploits1References4

CVE-2026-25580

Exploits1References3Affected Software1

NVD•added 2026/02/06 8:16 p.m.•5 views

CVE-2026-25640

Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 1.34.0 to before 1.51.0, a path traversal vulnerability in the Pydantic AI web UI allows an attacker to serve arbitrary JavaScript in the context of the application by crafting a malicious URL...

7.1CVSS0.00016EPSS

Vulnrichment•added 2026/02/06 8:1 p.m.•2 views

CVE-2026-25640 Pydantic AI affected by Stored XSS via Path Traversal in Web UI CDN URL

7.1CVSS5.8AI score0.00016EPSS

Cvelist•added 2026/02/06 8:1 p.m.•25 views

CVE-2026-25640 Pydantic AI affected by Stored XSS via Path Traversal in Web UI CDN URL

7.1CVSS0.00016EPSS