CNNVD-202506-2608 Information

CNNVD ID

CNNVD-202506-2608

Related CVE

CVE-2025-6282

• CNNVD Published: 2025-06-19

Description (Chinese)

OpenAgents是xlang-ai开源的一个开放的语言代理平台。 OpenAgents存在路径遍历漏洞，该漏洞源于文件backend/api/file.py中的函数create_upload_file存在路径遍历问题。

Description (English)

OpenAgents is an open language proxy platform for xlang-ai. OpenAgents has a path-crossing loophole, which stems from the function fileback/api/file.py having a path-crossing problem.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

xmedcon

Published

2025-06-19

Last Modified

2026-02-24

References

https://github.com/xlang-ai/OpenAgents/issues/141 https://vuldb.com/?id.313286 https://vuldb.com/?ctiid.313286 https://vuldb.com/?submit.593616 https://access.redhat.com/security/cve/cve-2025-6282