CVE-2025-0452 HIGH

CVE-2025-0452: Arbitrary File Deletion in eosphoros-ai/DB-GPT

Vendor Eosphoros-Ai
Product eosphoros-ai/db-gpt
Weakness CWE-73
Published March 20, 2025
Last update March 20, 2025

CVSS base score

8.2/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

What the vulnerability does

01Description

eosphoros-ai/DB-GPT version latest is vulnerable to arbitrary file deletion on Windows systems via the '/v1/agent/hub/update' endpoint. The application fails to properly filter the '\' character, which is commonly used as a separator in Windows paths. This vulnerability allows attackers to delete any files on the host system by manipulating the 'plugin_repo_name' variable.

Key dates

02Disclosure timeline

March 20, 2025 CVE published
March 20, 2025 Record updated