Metrics
Affected Vendors & Products
Source | ID | Title |
---|---|---|
![]() |
EUVD-2025-6905 | A path traversal vulnerability exists in the modelscope/agentscope application, affecting all versions. The vulnerability is present in the /delete-workflow endpoint, allowing an attacker to delete arbitrary files from the filesystem. This issue arises due to improper input validation, enabling the attacker to manipulate file paths and delete sensitive files outside of the intended directory. |
![]() |
GHSA-c4cc-w454-4634 | AgentScope path traversal vulnerability |
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Fri, 01 Aug 2025 02:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:modelscope:agentscope:*:*:*:*:*:*:*:* |
Thu, 20 Mar 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 20 Mar 2025 10:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A path traversal vulnerability exists in the modelscope/agentscope application, affecting all versions. The vulnerability is present in the /delete-workflow endpoint, allowing an attacker to delete arbitrary files from the filesystem. This issue arises due to improper input validation, enabling the attacker to manipulate file paths and delete sensitive files outside of the intended directory. | |
Title | Path Traversal in modelscope/agentscope | |
Weaknesses | CWE-29 | |
References |
| |
Metrics |
cvssV3_0
|

Status: PUBLISHED
Assigner: @huntr_ai
Published:
Updated: 2025-03-20T18:14:22.708Z
Reserved: 2024-09-06T17:42:26.515Z
Link: CVE-2024-8537

Updated: 2025-03-20T17:50:11.230Z

Status : Analyzed
Published: 2025-03-20T10:15:42.970
Modified: 2025-08-01T01:50:54.053
Link: CVE-2024-8537

No data.

Updated: 2025-07-12T22:31:43Z