CVE-2025-68472

Published Jan 12, 2026

Last updated 9 days ago

CVSS high 8.1

Overview

Description
MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.11.1, an unauthenticated path traversal in the file upload API lets any caller read arbitrary files from the server filesystem and move them into MindsDB’s storage, exposing sensitive data. The PUT handler in file.py directly joins user-controlled data into a filesystem path when the request body is JSON and source_type is not "url". Only multipart uploads and URL-sourced uploads receive sanitization; JSON uploads lack any call to clear_filename or equivalent checks. This vulnerability is fixed in 25.11.1.
Source
security-advisories@github.com
NVD status
Modified
Products
mindsdb

Risk scores

CVSS 3.1

Type
Primary
Base score
9.1
Impact score
5.2
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Severity
CRITICAL

Weaknesses

security-advisories@github.com
CWE-22

Social media

Hype score
Not currently trending

  1. Warning: Path traversal vulnerability in #MindsDB. CVE-2025-68472 CVSS 8.1. Exploitation can lead to exposure of sensitive data. #PoCReleased More info: https://t.co/xScC5WyZqB #Patch #Patch #Patch

    @CCBalert

    16 Jan 2026

    49 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. #CVE-2025-68472 https://t.co/6fYsoKt2bW JB小子别乱打,读取文件后会移动文件,若没用容器且部署权限过高,系统都登录不了。 https://t.co/jz906f6GFS

    @_r00tuser

    15 Jan 2026

    630 Impressions

    1 Retweet

    3 Likes

    3 Bookmarks

    0 Replies

    0 Quotes

  3. MindsDB has a filepath sanitation vulnerability (CVE-2025-68472) risking information disclosure and DoS. Review deployments. #MindsDB #infosec #security https://t.co/KRPnhxrKxK

    @pulsepatchio

    13 Jan 2026

    50 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. CVE-2025-68472 poc for MindsDB has improper sanitation of filepath that leads to information disclosure and DOS https://t.co/0QtsibANhU https://t.co/CZmxBv4A0b

    @sirifu4k1

    13 Jan 2026

    5552 Impressions

    13 Retweets

    71 Likes

    32 Bookmarks

    1 Reply

    0 Quotes

  5. CVE-2025-68472: CVE-2025-68472: The Absolute Path to Destruction in MindsDB https://t.co/M9APDDyqj6 #security #cybersecurity #cve #ghsa

    @_cvereports

    12 Jan 2026

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. 🟠 CVE-2025-68472 - High MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.11.1, an unauthenticated path traversal in the file upload API lets any caller read arbitr... https://t.co/lFEEIwn5xx https://t.co/mlzqF6jUav

    @TheHackerWire

    12 Jan 2026

    42 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. CVE-2025-68472 MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.11.1, an unauthenticated path traversal in the file upload API le… https://t.co/pUXyBlkfKi

    @CVEnew

    12 Jan 2026

    190 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.9.1.1, there is a path traversal vulnerability in Mindsdb's /api/files interface, which an authenticated attacker can exploit to achieve remote command execution. The vulnerability exists in the "Upload File" module, which corresponds to the API endpoint /api/files. Since the multipart file upload does not perform security checks on the uploaded file path, an attacker can perform path traversal by using `../` sequences in the filename field. The file write operation occurs before calling clear_filename and save_file, meaning there is no filtering of filenames or file types, allowing arbitrary content to be written to any path on the server. Version 25.9.1.1 patches the issue.CVE-2026-27483
  2. A security vulnerability has been detected in MindsDB up to 25.14.1. This vulnerability affects the function clear_filename of the file mindsdb/utilities/security.py of the component File Upload. Such manipulation leads to server-side request forgery. The attack may be performed from remote. The exploit has been disclosed publicly and may be used. The name of the patch is 74d6f0fd4b630218519a700fbee1c05c7fd4b1ed. It is best practice to apply a patch to resolve this issue.CVE-2026-2531
  3. A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, or dataset containing arbitrary JavaScript code within the web UI.CVE-2024-45856
  4. Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when using ‘finetune’ on it.CVE-2024-45855
  5. Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when a ‘describe’ query is run on it.CVE-2024-45854

References

Sources include official advisories and independent security research.