CVE-2026-27483

HIGH EPSS 95.4%
Published Feb 24, 20264mo ago · Modified Feb 26, 20264mo ago
8.8 CVSS 3.1
High
Find Similar
Published Feb 24, 2026 4mo ago
Last Modified Feb 26, 2026 4mo ago

Description

MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.9.1.1, there is a path traversal vulnerability in Mindsdb's /api/files interface, which an authenticated attacker can exploit to achieve remote command execution. The vulnerability exists in the "Upload File" module, which corresponds to the API endpoint /api/files. Since the multipart file upload does not perform security checks on the uploaded file path, an attacker can perform path traversal by using `../` sequences in the filename field. The file write operation occurs before calling clear_filename and save_file, meaning there is no filtering of filenames or file types, allowing arbitrary content to be written to any path on the server. Version 25.9.1.1 patches the issue.

CVSS Details

Base Score
8.8
Exploitability
2.8
Impact
5.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
95.4% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-22 Path Traversal Resource Mgmt

Affected Products 1

VendorProductVersionRange
mindsdbmindsdb* <25.9.1.1

References 3

  • github.com https://github.com/mindsdb/mindsdb/commit/87a44bdb2b97f963e18f10a068e1a1e2690505ef
    Patch
  • github.com https://github.com/mindsdb/mindsdb/releases/tag/v25.9.1.1
    ProductRelease Notes
  • github.com https://github.com/mindsdb/mindsdb/security/advisories/GHSA-4894-xqv6-vrfq
    ExploitVendor Advisory

Remediation

  • github.com https://github.com/mindsdb/mindsdb/commit/87a44bdb2b97f963e18f10a068e1a1e2690505ef
    Patch