CVE-2025-3572

Name of the Vulnerable Software and Affected Versions: SmartRobot versions prior to 8.0.0

Description: The issue allows unauthenticated remote attackers to probe the internal network and access arbitrary local files on the server. This is a Server-Side Request Forgery vulnerability.

Recommendations: For versions prior to 8.0.0, update to version 8.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to internal network resources and arbitrary local files on the server to minimize the risk of exploitation.