cbcvebase.

Frdel Agent-Zero vulnerabilities

4 known vulnerabilities affecting frdel/agent-zero.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3LOW1

Vulnerabilities

Page 1 of 1
CVE-2026-4308P3MEDIUMCVSS 6.3v0.9.72026-03-17
CVE-2026-4308 [MEDIUM] CWE-918 CVE-2026-4308: A weakness has been identified in frdel/agent0ai agent-zero 0.9.7. This affects the function handle_ A weakness has been identified in frdel/agent0ai agent-zero 0.9.7. This affects the function handle_pdf_document of the file python/helpers/document_query.py. This manipulation causes server-side request forgery. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks. The vend
nvd
CVE-2025-3547P3MEDIUMCVSS 6.3v0.8.1.22025-04-14
CVE-2025-3547 [MEDIUM] CWE-22 CVE-2025-3547: A vulnerability classified as critical was found in frdel Agent-Zero 0.8.1.2. This vulnerability aff A vulnerability classified as critical was found in frdel Agent-Zero 0.8.1.2. This vulnerability affects unknown code of the file /get_work_dir_files. The manipulation of the argument path leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
nvd
CVE-2026-4307P4MEDIUMCVSS 4.3v0.9.7-102026-03-17
CVE-2026-4307 [MEDIUM] CWE-22 CVE-2026-4307: A security flaw has been discovered in frdel/agent0ai agent-zero 0.9.7-10. The impacted element is t A security flaw has been discovered in frdel/agent0ai agent-zero 0.9.7-10. The impacted element is the function get_abs_path of the file python/helpers/files.py. The manipulation results in path traversal. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about t
nvd
CVE-2025-6166P4LOWCVSS 3.5v0.8.0v0.8.1+3 more2025-06-17
CVE-2025-6166 [LOW] CWE-22 CVE-2025-6166: A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This is A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This issue affects the function image_get of the file /python/api/image_get.py. The manipulation of the argument path leads to path traversal. Upgrading to version 0.8.4.1 is able to address this issue. The identifier of the patch is 5db74202d632306a883ccce7339c5b
nvd
Frdel Agent-Zero vulnerabilities | cvebase