CVE-2025-12695

Medium CVSS: 5.9

The overly permissive sandbox configuration in DSPy allows attackers to steal sensitive files in cases when users build an AI agent which consumes user input and uses the “PythonInterpreter” class.

Vendor

Product

CWE

CWE-653

Yayın Tarihi

2025-11-04 14:15:34

Güncelleme

2025-11-04 15:40:45

Source Identifier

reefs@jfrog.com

KEV Date Added

Kategoriler

CWE-653 MEDIUM 2025

Referanslar

https://research.jfrog.com/vulnerabilities/dspy-sandbox-escape-arbitrary-file-read-jfsa-2025-001495652/