Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2025/12/22 12:0 a.m.3 views

CVE-2025-63663

Incorrect access control in the /api/v1/conversations//files API of GT Edge AI Platform before v2.0.10 allows unauthorized attackers to access other users' uploaded files...

6.4AI score0.00241EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/22 12:0 a.m.3 views

CVE-2025-63662

Insecure permissions in the /api/v1/agents API of GT Edge AI Platform before v2.0.10-dev allows unauthorized attackers to access sensitive information...

6.3AI score0.00255EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/22 12:0 a.m.7 views

PT-2025-52672

Name of the Vulnerable Software and Affected Versions GT Edge AI Platform versions prior to 2.0.10 Description An access control issue exists in the /api/v1/conversations//files API of GT Edge AI Platform. This allows unauthorized access to files uploaded by other users. The vulnerable parameter ...

7.5CVSS6.8AI score0.00241EPSS
Exploits0References7
CVE
CVE
added 2025/12/22 12:0 a.m.22 views

CVE-2025-63664

GT Edge AI Platform (prior to v2.0.10-dev) exposes an access control flaw in the /api/v1/conversations/*/messages endpoint, allowing unauthorized users or AI agents to read other users’ message history. Root cause described as improper access control. Affected version range is before 2.0.10-dev. ...

7.5CVSS6.4AI score0.00241EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/12/22 12:0 a.m.12 views

CVE-2025-63662

CVE-2025-63662 affects GT Edge AI Platform prior to v2.0.10-dev. The vulnerability stems from insecure permissions on the /api/v1/agents API, enabling unauthorized access to sensitive information. Multiple trusted sources (Red Hat, ENISA, CNNVD, CVE lists, and enterprise feeds) corroborate the is...

7.5CVSS6.3AI score0.00255EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder