GHSA-hhw5-29f6-hf4x · Severity: critical · Ecosystem: pip — DB-GPT Absolute Path Traversal vulnerability
In eosphoros-ai/db-gpt version 0.6.0, the endpoint for uploading files is vulnerable to absolute path traversal. This vulnerability allows an attacker to upload arbitrary files to arbitrary locations on the target server. The issue arises because the `file_key` and `doc_file.filename` parameters are user-controllable, enabling the construction of paths outside the intended directory. This can lead to overwriting essential system files, such as SSH keys, for further exploitation.
Conclusion & alert: CVE-2024-10831 is rated High Exploit Risk (67.5/100): CVSS Critical severity, with low exploitation likelihood (EPSS 0.24%). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
| EDB-ID | Source | Kind | Published | Link |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-05-02 | 0.41% | 0.24% | -0.18% |
| 2 | 2026-04-30 | 0.17% | 0.41% | +0.25% |
| 3 | 2025-12-04 | — | 0.17% | — |
Full EPSS history (7 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 9.1 | 3.0 | CRITICAL |
|
3.9 | 5.2 | [email protected] |
GHSA-hhw5-29f6-hf4x · Severity: critical · Ecosystem: pip — DB-GPT Absolute Path Traversal vulnerability
| URL | Tags |
|---|---|
| https://huntr.com/bounties/5c34c39f-66d4-414c-ab6a-f7888a5d882a | Exploit Third Party Advisory |