CVE-2026-24770

Name of the Vulnerable Software and Affected Versions RAGFlow versions prior to 0.23.1

Description RAGFlow, an open-source RAG (Retrieval-Augmented Generation) engine, is affected by a "Zip Slip" issue in the MinerU parser. This allows an attacker to overwrite arbitrary files on the server, potentially leading to Remote Code Execution (RCE) through a malicious ZIP archive. The vulnerability resides in the extract zip no root function, which fails to sanitize filenames within the ZIP archive. Approximately 3,000 instances are reportedly exposed. The vulnerability is present in version 0.23.1 and potentially earlier versions. The MinerUParser class retrieves and extracts ZIP files from an external source using the mineru server url.

Recommendations Versions prior to 0.23.1 should be updated to version 0.23.1 or later.