CVE-2025-57697 | AstrBot 3.5.22 entities.py _encode_image_bs64 path traversal

Inserito da Angelo Barbosa | Nov 8, 2025 | CVE

A vulnerability classified as critical has been found in AstrBot 3.5.22. This affects the function _encode_image_bs64 of the file entities.py. Performing manipulation results in path traversal.

This vulnerability is known as CVE-2025-57697. Access to the local network is required for this attack. No exploit is available.

CVE-2025-57697 | AstrBot 3.5.22 entities.py _encode_image_bs64 path traversal

Post correlati

CVE-2024-4554 | OpenText NetIQ Access Manager up to 5.0.4.0 cross site scripting

CVE-2025-8851 | LibTIFF up to 4.5.1 tiffcrop tools/tiffcrop.c readSeparateStripsetoBuffer stack-based overflow

CVE-2024-5421 | SEH Computertechnik utnserver Pro/utnserver ProMAX/INU-100 up to 20.1.22 Web Interface os command injection

CVE-2024-4688 | Campcodes Complete Web-Based School Management System 1.0 conversation_history_admin.php conversation_id cross site scripting