cve/CVE-2025-48950.md at b99156590a6b0c1cf0b374aa41887d37143570c8

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as /bin,/usr/bin, etc. Therefore, attackers can exploit some files with execution permissions in non blacklisted directories to carry out attacks. Version 1.10.8-lts fixes the issue.

POC

Reference

https://github.com/1Panel-dev/MaxKB/security/advisories/GHSA-p2qq-x9j2-px8v

Github

https://github.com/fkie-cad/nvd-json-data-feeds

935 B Raw Blame History

CVE-2025-48950

Description

POC

Reference

Github

935 B

Raw Blame History