Security Advisory

CVE-2024-56137

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-02 14:26:19

Last updated 2025-01-02 17:56:52

Assigner GitHub_M

State PUBLISHED

Description

MaxKB, which stands for Max Knowledge Base, is an open source knowledge base question-answering system based on a large language model and retrieval-augmented generation (RAG). Prior to version 1.9.0, a remote command execution vulnerability exists in the module of function library. The vulnerability allow privileged‌ users to execute OS command in custom scripts. The vulnerability has been fixed in v1.9.0.

← Browse all CVEs View on cve.org ↗