Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-48950

MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as `/bin,/usr/bin`, etc. Therefore, attackers can exploit some files with execution permissions in non blacklisted directories to carry out attacks. Version 1.10.8-lts fixes the issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.6%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2025-48950
  • Maxkb » Maxkb » Version: 1.10.0
    cpe:2.3:a:maxkb:maxkb:1.10.0
  • Maxkb » Maxkb » Version: 1.10.1
    cpe:2.3:a:maxkb:maxkb:1.10.1
  • Maxkb » Maxkb » Version: 1.10.2
    cpe:2.3:a:maxkb:maxkb:1.10.2
  • Maxkb » Maxkb » Version: 1.10.3
    cpe:2.3:a:maxkb:maxkb:1.10.3
  • Maxkb » Maxkb » Version: 1.10.4
    cpe:2.3:a:maxkb:maxkb:1.10.4
  • Maxkb » Maxkb » Version: 1.10.5
    cpe:2.3:a:maxkb:maxkb:1.10.5
  • Maxkb » Maxkb » Version: 1.10.6
    cpe:2.3:a:maxkb:maxkb:1.10.6
  • Maxkb » Maxkb » Version: 1.10.7
    cpe:2.3:a:maxkb:maxkb:1.10.7


Products
Pricing
Contact Us

Shodan ® - All rights reserved