CVE-2025-57697 | AstrBot 3.5.22 entities.py _encode_image_bs64 path traversal

Inserito da Angelo Barbosa | Nov 8, 2025 | CVE

A vulnerability classified as critical has been found in AstrBot 3.5.22. This affects the function _encode_image_bs64 of the file entities.py. Performing manipulation results in path traversal.

This vulnerability is known as CVE-2025-57697. Access to the local network is required for this attack. No exploit is available.

CVE-2025-57697 | AstrBot 3.5.22 entities.py _encode_image_bs64 path traversal

Post correlati

CVE-2024-46818 | Linux Kernel up to 6.10.8 AMD Display gpio_id array index

CVE-2024-45715 | SolarWinds Platform up to 2024.2.1 Edit cross site scripting

CVE-2024-42040 | DENEX U-Boot DHCP net/bootp.c buffer overflow

CVE-2024-41768 | IBM Engineering Lifecycle Optimization Publishing 7.0.2/7.0.3 missing standardized error handling mechanism