CVE-2025-3578 PUBLISHED

Adversarial Input Handling Vulnerability in AiDex

Assigner: INCIBE
Reserved: 14.04.2025 Published: 15.04.2025 Updated: 15.04.2025

A malicious, authenticated user in Aidex, versions prior to 1.7, could list credentials of other users, create or modify existing users in the application, list credentials of users in production or development environments. In addition, it would be possible to cause bugs that would result in the exfiltration of sensitive information, such as details about the software or internal system paths. These actions could be carried out through the misuse of LLM Prompt (chatbot) technology, via the /api/<string-chat>/message endpoint, by manipulating the contents of the ‘content’ parameter.

Metrics

CVSS 4.0

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N
CVSS Score: 9.3

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Network	Confidentiality	High	Confidentiality	None
Attack Complexity	Low	Integrity	High	Integrity	None
Attack Requirements	None	Availability	Low	Availability	None
Privileges Required	None
User Interaction	None

CVSS 4.0

Product Status

Vendor	AiDex
Product	AiDex
Versions	Default: unaffected affected from 0 to 1.7 (excl.)

Solutions

The vulnerability has been fixed by the AiDex team in version 1.7.

Credits

David Utón Amaya (m3n0sd0n4ld) finder

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-aidex

Problem Types

CWE-1039: Inadequate Detection or Handling of Adversarial Input Perturbations in Automated Recognition Mechanism CWE