CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-32383

MaxKB (Max Knowledge Base) is an open source knowledge base question-answering system based on a large language model and retrieval-augmented generation (RAG). A reverse shell vulnerability exists in the module of function library. The vulnerability allow privileged‌ users to create a reverse shell. This vulnerability is fixed in v1.10.4-lts.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.7%

CVSS Severity

CVSS v3 Score 4.3

References

https://github.com/1Panel-dev/MaxKB/commit/4ae02c8d3eb65542c88ef58c0abd94c52c949d8f
https://github.com/1Panel-dev/MaxKB/security/advisories/GHSA-fjf6-6cvf-xr72

Products affected by CVE-2025-32383

Maxkb » Maxkb » Version: 1.10.0

cpe:2.3:a:maxkb:maxkb:1.10.0
Maxkb » Maxkb » Version: 1.10.1

cpe:2.3:a:maxkb:maxkb:1.10.1
Maxkb » Maxkb » Version: 1.10.2

cpe:2.3:a:maxkb:maxkb:1.10.2
Maxkb » Maxkb » Version: 1.10.3

cpe:2.3:a:maxkb:maxkb:1.10.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-32383

Products

Pricing

Contact Us