Failbutwin

#16929of 53,622
15.9Total CVSS
Vulnerabilities · 2
Medium
1
Critical
1
PT-2026-24852
6.3
2026-03-11
Labring · Fastgpt · CVE-2026-32128
**Name of the Vulnerable Software and Affected Versions** FastGPT versions 4.14.7 and earlier **Description** FastGPT is an AI Agent building platform. The Python Sandbox (fastgpt-sandbox) includes security measures to prevent file writes using static detection and seccomp. These measures can be bypassed by remapping standard output (stdout), file descriptor 1, to an arbitrary writable file descriptor using the `fcntl` function. Following this remapping, writing through `sys.stdout.write()` still complies with the seccomp rule `write(fd==1)`, allowing for arbitrary file creation and overwriting within the sandbox container, despite the intended restriction against file writes. The `fcntl` function is used to manipulate file descriptors. **Recommendations** Versions prior to 4.14.7 should be updated.
PT-2026-5441
9.6
2026-01-30
Unknown · Cybersecurity Ai · CVE-2026-25130
**Name of the Vulnerable Software and Affected Versions** Cybersecurity AI (CAI) versions up to and including 0.5.10 **Description** The Cybersecurity AI (CAI) framework contains multiple argument injection vulnerabilities within its function tools. User-controlled input is directly passed to shell commands using `subprocess.Popen()` with `shell=True`, potentially allowing attackers to execute arbitrary commands on the host system. Specifically, the `find file()` function, located in `src/cai/tools/reconnaissance/filesystem.py`, is vulnerable because it executes without requiring user approval, as the `find` command is considered a "safe" pre-approved command. An attacker can exploit this by injecting malicious arguments, such as `-exec`, into the `args` parameter, bypassing safety mechanisms and achieving Remote Code Execution (RCE). The vulnerable command construction is: `command = f'find {file path} {args}'`. The `file path` and `args` variables are user-controlled inputs. **Recommendations** Versions up to and including 0.5.10 should be updated to a version containing commit e22a1220f764e2d7cf9da6d6144926f53ca01cde or later. As a temporary workaround, consider restricting or disabling the use of the `find file()` function until a patch is applied.