p80n-sec/Vulnerability-Research

Releases0

Stars1

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-63662 ↗	Dec 22, 2025Monday, 22 December 2025, 19:15	7.5 HIGH	—
Insecure permissions in the /api/v1/agents API of GT Edge AI Platform before v2.0.10-dev allows unauthorized attackers to access sensitive information.
CVE-2025-63663 ↗	Dec 22, 2025Monday, 22 December 2025, 19:15	7.5 HIGH	—
Incorrect access control in the /api/v1/conversations/*/files API of GT Edge AI Platform before v2.0.10 allows unauthorized attackers to access other users' uploaded files.
CVE-2025-63664 ↗	Dec 22, 2025Monday, 22 December 2025, 19:15	7.5 HIGH	—
Incorrect access control in the /api/v1/conversations/*/messages API of GT Edge AI Platform before v2.0.10-dev allows unauthorized attackers to access other users' message history with AI agents.
CVE-2025-63665 ↗	Dec 19, 2025Friday, 19 December 2025, 17:15	9.8 CRITICAL	—
An issue in GT Edge AI Community Edition Versions before v2.0.12 allows attackers to execute arbitrary code via injecting a crafted JSON payload into the Prompt window.