72 matches found
CVE-2025-55523
An issue in the component /api/downloadworkdirfile.py of Agent-Zero v0.8. allows attackers to execute a directory traversal...
CVE-2025-55524
Insecure permissions in Agent-Zero v0.8. allow attackers to arbitrarily reset the system via unspecified vectors...
CVE-2025-55524
Insecure permissions in Agent-Zero v0.8. allow attackers to arbitrarily reset the system via unspecified vectors...
CVE-2025-55524
Insecure permissions in Agent-Zero v0.8. allow attackers to arbitrarily reset the system via unspecified vectors...
CVE-2025-55523
An issue in the component /api/downloadworkdirfile.py of Agent-Zero v0.8. allows attackers to execute a directory traversal...
CVE-2025-55523
An issue in the component /api/downloadworkdirfile.py of Agent-Zero v0.8. allows attackers to execute a directory traversal...
CVE-2025-55524
CVE-2025-55524 concerns Agent-Zero, versions 0.8.0 through 0.8.9 , where insecure permissions allow an attacker to arbitrarily reset the system via unspecified vectors. Root cause cited as improper permissions in Agent-Zero v0.8.*. Public docs do not specify a concrete vulnerable component, explo...
Agent Zero 安全漏洞
Agent Zero is an artificial intelligence framework by the individual developer Jan Tomášek. A security vulnerability exists in Agent Zero version v0.8, which stems from improper permissions and could lead to a system reset...
CVE-2025-55524
Insecure permissions in Agent-Zero v0.8. allow attackers to arbitrarily reset the system via unspecified vectors...
CVE-2025-55523
Agent-Zero CVE-2025-55523 affects v0.8.0–0.9.4 and is caused by improper validation in /api/download_work_dir_file.py that enables a path traversal, allowing arbitrary file download via a crafted request. Impacts include access to unauthorized files. Remediation: update to the latest Agent-Zero v...
CVE-2025-55524
Insecure permissions in Agent-Zero v0.8. allow attackers to arbitrarily reset the system via unspecified vectors...
PT-2025-34265
Name of the Vulnerable Software and Affected Versions: Agent-Zero versions 0.8.0 through 0.8.9 Description: An issue exists in the /api/download work dir file.py component that allows attackers to execute a directory traversal. Recommendations: At the moment, there is no information about a newer...
PT-2025-34266
Name of the Vulnerable Software and Affected Versions: Agent-Zero versions 0.8.0 through 0.8.9 Description: Insecure permissions in Agent-Zero allow attackers to arbitrarily reset the system via unspecified vectors. Recommendations: At the moment, there is no information about a newer version tha...
CVE-2025-55523
An issue in the component /api/downloadworkdirfile.py of Agent-Zero v0.8. allows attackers to execute a directory traversal...
Agent Zero 安全漏洞
Agent Zero is an artificial intelligence framework by the individual developer Jan Tomášek. A security vulnerability exists in Agent Zero version v0.8, which stems from a directory traversal vulnerability in the /api/downloadworkdirfile.py component...
CVE-2025-55523
An issue in the component /api/downloadworkdirfile.py of Agent-Zero v0.8. allows attackers to execute a directory traversal...
CVE-2025-6166
A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This issue affects the function imageget of the file /python/api/imageget.py. The manipulation of the argument path leads to path traversal. Upgrading to version 0.8.4.1 is able to address this issue. The...
CVE-2025-6166
A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This issue affects the function imageget of the file /python/api/imageget.py. The manipulation of the argument path leads to path traversal. Upgrading to version 0.8.4.1 is able to address this issue. The...
CVE-2025-6166
A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This issue affects the function imageget of the file /python/api/imageget.py. The manipulation of the argument path leads to path traversal. Upgrading to version 0.8.4.1 is able to address this issue. The...
CVE-2025-6166
CVE-2025-55523 (Agent-Zero) affects Agent-Zero v0.8.* with a directory traversal flaw in the /api/download_work_dir_file.py component. The related PT-2025-34265 entry confirms versions 0.8.0–0.8.9 are affected and notes there is no information about a fixed newer version in that source. Other con...