216.73.217.98

CVE-2025-68472

· Published 12/01/2026 17:15 · Modified 13/01/2026 14:03

Labels: CVE-2025-68472 2026-01-12CVE-2025-68472CWE-22[email protected]

Essential information

Published
12/01/2026 17:15
Modified
13/01/2026 14:03
Author
Creator
CVSS
8.1 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CVSS metrics

Description

MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.11.1, an unauthenticated path traversal in the file upload API lets any caller read arbitrary files from the server filesystem and move them into MindsDB’s storage, exposing sensitive data. The PUT handler in file.py directly joins user-controlled data into a filesystem path when the request body is JSON and source_type is not "url". Only multipart uploads and URL-sourced uploads receive sanitization; JSON uploads lack any call to clear_filename or equivalent checks. This vulnerability is fixed in 25.11.1.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mindsdb / mindsdb cpe:2.3:a:mindsdb:mindsdb:<25.11.1:*:*:*:*:*:*:*

References