Description
MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and prior are vulnerable to a broken access control vulnerability in the OSS file service URL fetch API (chat/api/oss/get_url). The endpoint uses application_id from the URL path without validating ownership, allowing attackers to perform operations under other applications’ policies. This vulnerability is fixed in 2.8.1.
Published: 2026-05-26
Score: 5.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

MaxKB’s OSS file service URL fetch API (chat/api/oss/get_url) accepts an application_id from the URL path without verifying that the caller owns or is authorized for that application. This allows an attacker who can reach the endpoint to perform actions that are normally restricted to the owning application’s users, effectively bypassing the intended access controls. The flaw can lead to unauthorized retrieval or manipulation of data that should remain isolated to a single application, compromising data integrity and confidentiality.

Affected Systems

The vulnerability affects the open‑source AI assistant MaxKB produced by 1Panel-dev. Versions 2.8.0 and all earlier releases are vulnerable; the issue was fixed in release 2.8.1.

Risk and Exploitability

The CVSS score is 5.3, indicating a moderate severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. Attackers can exploit the flaw by accessing the chat/api/oss/get_url endpoint with a manipulated application_id, provided they have network reach to the server and any required authentication. No advanced conditions or exploits are required to leverage this weakness. The risk is primarily in the accidental or malicious misuse of the URL fetch operation by users or applications that should not have cross‑application permissions.

Generated by OpenCVE AI on May 26, 2026 at 21:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade MaxKB to version 2.8.1 or later.
  • Restrict access to the chat/api/oss/get_url endpoint so that only authenticated and authorized users can invoke it.
  • Implement checks to verify that the supplied application_id belongs to the caller’s permitted application set, and deny requests that do not match.

Generated by OpenCVE AI on May 26, 2026 at 21:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 26 May 2026 20:30:00 +0000

Type Values Removed Values Added
Description MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and prior are vulnerable to a broken access control vulnerability in the OSS file service URL fetch API (chat/api/oss/get_url). The endpoint uses application_id from the URL path without validating ownership, allowing attackers to perform operations under other applications’ policies. This vulnerability is fixed in 2.8.1.
Title MaxKB: Broken Access Control in MaxKB OSS URL Fetch API
Weaknesses CWE-862
References
Metrics cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-26T20:19:40.844Z

Reserved: 2026-04-26T13:26:14.514Z

Link: CVE-2026-42337

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-26T21:16:37.317

Modified: 2026-05-26T21:16:37.317

Link: CVE-2026-42337

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-26T21:30:16Z

Weaknesses