📦 Maxkb

CVE-2025-66419 is a sandbox escape vulnerability in MaxKB's tool module that allows attackers to escalate privileges under concurrent conditions. This affects MaxKB versions 2.3.1 and below, potential...

CVE-2025-66446 is a privilege escalation vulnerability in MaxKB AI assistant where improper file permissions allow attackers to overwrite critical system files like the dynamic linker. This could enab...

This vulnerability in MaxKB allows authenticated users to bypass sandbox restrictions and execute Python code that can access internal network services like databases. It affects all MaxKB deployments...

MaxKB versions before 2.3.1 contain a sandbox escape vulnerability in the Python tool module that allows authenticated users to access sensitive information. This affects organizations using MaxKB for...

This vulnerability allows attackers to bypass sandbox restrictions in MaxKB by copying malicious files to executable directories using Python's shutil.copy2 method. This could lead to remote code exec...

A reverse shell vulnerability in MaxKB's function library module allows privileged users to execute arbitrary code and establish remote shell access. This affects MaxKB deployments where users have ad...

CVE-2024-56137 is a remote command execution vulnerability in MaxKB's function library module that allows privileged users to execute arbitrary operating system commands through custom scripts. This a...