CVE-2025-51482 | letta 0.7.12 /v1/tools/run access control

Inserito da Angelo Barbosa | Lug 22, 2025 | CVE

A vulnerability was found in letta 0.7.12 and classified as critical. This issue affects the function letta.server.rest_api.routers.v1.tools.run_tool_from_source of the file /v1/tools/run. The manipulation leads to improper access controls.

The identification of this vulnerability is CVE-2025-51482. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-51482 | letta 0.7.12 /v1/tools/run access control

Post correlati

CVE-2024-22397 | SonicWall SonicOS SSLVPN Portal cross site scripting (SNWLID-2024-0005)

CVE-2024-2084 | HT Mega Plugin up to 2.4.6 on WordPress Lightbox Widget cross site scripting

CVE-2025-43877 | ELECOM WRC-1167GHBK2-S WebGUI cross site scripting

CVE-2025-22696 | EmbedPress Document Block Plugin up to 1.1.0 on WordPress authorization