CVE-2026-5595 | griptape-ai griptape 0.19.4 FileManagerTool path traversal

A vulnerability described as critical has been identified in griptape-ai griptape 0.19.4. Affected by this vulnerability is the function load_files_from_disk/list_files_from_disk/save_content_to_file/save_memory_artifacts_to_disk of the component FileManagerTool. Such manipulation leads to path traversal.

This vulnerability is listed as CVE-2026-5595. The attack may be performed from remote. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-5595 | griptape-ai griptape 0.19.4 FileManagerTool path traversal

Post correlati

CVE-2024-6780 | TECNO Mobile Application 33 User Information permission

CVE-2024-0172 | Dell PowerEdge Server BIOS/Precision Rack BIOS privileges management (dsa-2024-035)

CVE-2024-8290 | wclovers WCFM Plugin up to 6.7.12 on WordPress processing authorization

CVE-2023-50740 | Apache Linkis DataSource up to 1.4.x log file