Lucene search
K

5 matches found

Circl
Circl
added 2025/03/20 12:48 p.m.8 views

CVE-2025-0452

creationtimestamp| type| source ---|---|--- 2025-03-20 12:48:45+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114194836488314320 2025-03-20 13:03:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lksr43hsje2l 2025-03-20 13:05:08+00:00| seen|...

8.2CVSS7.8AI score0.00514EPSS
Exploits1References3
NVD
NVD
added 2025/03/20 10:15 a.m.8 views

CVE-2025-0452

eosphoros-ai/DB-GPT version latest is vulnerable to arbitrary file deletion on Windows systems via the '/v1/agent/hub/update' endpoint. The application fails to properly filter the '' character, which is commonly used as a separator in Windows paths. This vulnerability allows attackers to delete...

8.2CVSS0.00514EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/20 10:8 a.m.8 views

CVE-2025-0452 Arbitrary File Deletion in eosphoros-ai/DB-GPT

eosphoros-ai/DB-GPT version latest is vulnerable to arbitrary file deletion on Windows systems via the '/v1/agent/hub/update' endpoint. The application fails to properly filter the '' character, which is commonly used as a separator in Windows paths. This vulnerability allows attackers to delete...

8.2CVSS8.1AI score0.00514EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/20 10:8 a.m.13 views

CVE-2025-0452 Arbitrary File Deletion in eosphoros-ai/DB-GPT

eosphoros-ai/DB-GPT version latest is vulnerable to arbitrary file deletion on Windows systems via the '/v1/agent/hub/update' endpoint. The application fails to properly filter the '' character, which is commonly used as a separator in Windows paths. This vulnerability allows attackers to delete...

8.2CVSS0.00514EPSS
Exploits1References1
CVE
CVE
added 2025/03/20 10:8 a.m.55 views

CVE-2025-0452

CVE-2025-0452 affects eosphoros-ai/DB-GPT (latest) and is described as vulnerable to arbitrary file deletion on Windows via the /v1/agent/hub/update endpoint. The root cause cited across sources is failure to properly filter the backslash character, a common Windows path separator, allowing manip...

8.2CVSS8.1AI score0.00514EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder