CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-0452: Arbitrary File Deletion in eosphoros-ai/DB-GPT

8.2 CVSS

Description

eosphoros-ai/DB-GPT version latest is vulnerable to arbitrary file deletion on Windows systems via the '/v1/agent/hub/update' endpoint. The application fails to properly filter the '\' character, which is commonly used as a separator in Windows paths. This vulnerability allows attackers to delete any files on the host system by manipulating the 'plugin_repo_name' variable.

Classification

CVE ID: CVE-2025-0452

CVSS Base Severity: HIGH

CVSS Base Score: 8.2

CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Problem Types

CWE-73 External Control of File Name or Path

Affected Products

Vendor: eosphoros-ai

Product: eosphoros-ai/db-gpt

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.09% (probability of being exploited)

EPSS Percentile: 26.03% (scored less or equal to compared to others)

EPSS Date: 2025-04-18 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-0452
https://huntr.com/bounties/7e854343-3d61-47d4-ad41-c4d2f356a54a

Timeline

2025-03-20 11:40:52 UTC
CVE

Arbitrary File Deletion in eosphoros-ai/DB-GPT