Lucene search
K
MaxkbMaxkb

20 matches found

CVE
CVE
added 2025/05/11 8:0 p.m.93 views

CVE-2025-4546

CVE-2025-4546 affects 1Panel-dev MaxKB, specifically the Knowledge Base Module up to version 1.10.7. The issue enables csv injection via an unknown functionality in the Knowledge Base Module, with remote exploitation possible. Upgrading to version 1.10.8 addresses the vulnerability. If applying r...

8.8CVSS7.5AI score0.00553EPSS
CVE
CVE
added 2025/04/10 1:7 p.m.73 views

CVE-2025-32383

MaxKB (Max Knowledge Base) has a reverse shell vulnerability in the function library module that could allow privileged users to create a reverse shell. The issue is fixed in version 1.10.4-lts. Affected software is MaxKB; root cause details are not elaborated in the provided documents. Remediati...

7.2CVSS4.5AI score0.0027EPSS
CVE
CVE
added 2025/01/02 2:26 p.m.59 views

CVE-2024-56137

CVE-2024-56137 affects MaxKB (open source knowledge-base Q&A with LLM and RAG). Prior to version 1.9.0, a remote command execution vulnerability exists in the function library module, allowing privileged users to execute OS commands within custom scripts. The issue has been fixed in v1.9.0. Curre...

7.2CVSS7.5AI score0.00786EPSS
CVE
CVE
added 2025/06/03 6:16 p.m.57 views

CVE-2025-48950

MaxKB (open-source AI assistant) prior to version 1.10.8-lts is affected by a sandbox bypass in the Python function library: the sandbox only enforces execution permissions for binaries in common directories (e.g., /bin, /usr/bin), allowing attackers to exploit files with execution permission in ...

8.8CVSS6.6AI score0.00371EPSS
CVE
CVE
added 2026/04/14 1:18 a.m.36 views

CVE-2026-39425

CVE-2026-39425 affects MaxKB (enterprise AI assistant). Versions 2.7.1 and earlier allow Stored XSS via unsanitized tags in the Application prologue, stored through /admin/api/workspace/{workspace_id}/application and rendered by the frontend via innerHTML, enabling persistent XSS and potential s...

5.4CVSS6AI score0.0018EPSS
Web
CVE
CVE
added 2026/04/14 12:56 a.m.33 views

CVE-2026-39424

MaxKB (1Panel-dev) has a CSV-injection vulnerability in the chat export feature for versions 2.7.1 and earlier. When exporting chat history to .xlsx via /admin/api/workspace/{workspace_id}/application/{application_id}/chat/export, strings beginning with formula characters are written without sani...

5.3CVSS5.8AI score0.00368EPSS
Web
CVE
CVE
added 2025/11/13 3:51 p.m.31 views

CVE-2025-64511

MaxKB is vulnerable in versions prior to 2.3.1 due to SSRF in the tool module’s Python code, which can access internal network services (e.g., databases) even though the process runs in a sandbox. The issue is resolved in version 2.3.1. Connected sources corroborate the sandboxed Python-access pa...

8.8CVSS6.6AI score0.002EPSS
CVE
CVE
added 2026/04/14 12:3 a.m.31 views

CVE-2026-39417

Affected software : MaxKB, specifically versions 2.7.1 and earlier. Vulnerability details : An incomplete fix for CVE-2025-53928 leaves a Remote Code Execution in the MCP node of the workflow engine. The fix only patched the path loading MCP config from the database; the else branch that loads mc...

5.5CVSS6AI score0.00243EPSS
CVE
CVE
added 2025/07/17 1:50 p.m.30 views

CVE-2025-53927

MaxKB before 2.0.0 has a sandbox bypass where the security design restricts only a specific directory’s execution permissions. An attacker can abuse Python’s shutil.copy2 to copy a command into the executable directory, bypassing the directory restrictions and enabling a reverse shell. Affected p...

6.3CVSS7.1AI score0.00226EPSS
CVE
CVE
added 2025/11/13 3:52 p.m.28 views

CVE-2025-64703

MaxKB (open‑source enterprise AI assistant) contains an information disclosure vulnerability in versions prior to 2.3.1. The issue arises from Python code in the tool module, where a user can obtain sensitive information despite the process running in a sandbox. The root cause is effectively a sa...

6.5CVSS6.5AI score0.00193EPSS
CVE
CVE
added 2025/07/17 1:56 p.m.27 views

CVE-2025-53928

MaxKB has a Remote Command Execution vulnerability in the MCP call present in versions prior to 1.10.9-lts and 2.0.0. The issue is fixed in 1.10.9-lts and 2.0.0. No exploitation details are provided beyond this, and remediation is to upgrade to the fixed versions.

9.8CVSS6.8AI score0.00427EPSS
CVE
CVE
added 2026/04/14 12:28 a.m.24 views

CVE-2026-39423

Summary (CVE-2026-39423) MaxKB (enterprise open‑source) × affected version: 2.7.1 and earlier. A vulnerability in the Markdown rendering engine enables an Eval Injection that lets any user in the AI chat interface execute arbitrary JavaScript in other users’ browsers, including administrators, le...

6.9CVSS6.1AI score0.00173EPSS
CVE
CVE
added 2026/04/14 12:22 a.m.23 views

CVE-2026-39422

MaxKB vulnerability CVE-2026-39422 is a Stored XSS in versions 2.7.1 and earlier, triggered via the application name or icon fields when creating an application. When users visit the public chat interface (/ui/chat/{access_token}), ChatHeadersMiddleware retrieves application data and directly ins...

6.9CVSS6AI score0.00216EPSS
Web
CVE
CVE
added 2026/04/14 1:3 a.m.21 views

CVE-2026-39419

MaxKB (enterprise open-source AI assistant)

3.1CVSS5.9AI score0.00222EPSS
CVE
CVE
added 2026/04/14 12:8 a.m.19 views

CVE-2026-39418

CVE-2026-39418 MaxKB is affected in versions ≤ 2.7.1 where the sandbox’s network protection can be bypassed. An authenticated user with tool-editing permissions can reach internal services blocked by the sandbox by using socket.sendto() with the MSG_FASTOPEN flag. MaxKB’s sandbox relies on LD_PRE...

7.4CVSS5.7AI score0.00198EPSS
CVE
CVE
added 2026/04/14 12:17 a.m.18 views

CVE-2026-39421

CVE-2026-39421 affects MaxKB (versions 2.7.1 and earlier). The sandbox escape occurs in ToolExecutor via Python ctypes calling raw syscalls to bypass LD_PRELOAD sandbox.so, enabling arbitrary code execution through direct kernel syscalls and potential full container/network compromise. The librar...

7.4CVSS6.5AI score0.00264EPSS
CVE
CVE
added 2025/12/11 9:39 p.m.14 views

CVE-2025-66419

CVE-2025-66419 affects MaxKB: the tool module in versions 2.3.1 and earlier allows an attacker to escape the sandbox and escalate privileges under certain concurrent conditions. Consequences are privilege elevation and potential broader impact within affected deployments. The issue has a fixed re...

10CVSS6.7AI score0.00276EPSS
CVE
CVE
added 2025/12/11 9:47 p.m.13 views

CVE-2025-66446

MaxKB (enterprise AI assistant) versions 2.3.1 and earlier are affected by improper file permissions that allow overwriting the built-in dynamic linker and other critical files, potentially enabling privilege escalation. The issue is fixed in version 2.4.0. Affected component: file permissions go...

8.8CVSS6.5AI score0.00311EPSS
CVE
CVE
added 2026/04/14 12:13 a.m.13 views

CVE-2026-39420

CVE-2026-39420 (MaxKB) affects MaxKB

7.4CVSS6.3AI score0.00485EPSS
CVE
CVE
added 2026/04/14 1:25 a.m.12 views

CVE-2026-39426

MaxKB (enterprise open-source AI assistant) contains a Stored XSS in versions 2.7.1 and earlier. The vulnerability arises in MdRenderer.vue, which parses custom tags from LLM responses or Prologue configurations and bypasses Markdown sanitization. Unsanitized HTML is passed to IframeRender.vue a...

5.4CVSS5.8AI score0.00193EPSS