CVE-2025-53928 – MaxKB Remote Command Execution

July 17, 2025

CVE ID : CVE-2025-53928

Published : July 17, 2025, 2:15 p.m. | 16 minutes ago

Description : MaxKB is an open-source AI assistant for enterprise. Prior to versions 1.10.9-lts and 2.0.0, a Remote Command Execution vulnerability exists in the MCP call. Versions 1.10.9-lts and 2.0.0 fix the issue.

Severity: 4.6 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53941 – Hollo ActivityPub HTML Injection Vulnerability

Next Article CVE-2025-53927 – MaxKB Directory Traversal (Command Execution)

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Reclaim Space: Delete Docker Orphan Layers

Notes Android App Using SQLite

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

CVE-2025-53928 – MaxKB Remote Command Execution

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

AI-driven deception: A new face of corporate fraud

See-Through Parallel Universes with Your Mind’s Eye – The Course Guidebook: Chapter 4

Intel agrees to $4.46 billion sale of majority stake in Altera to Silver Lake — “Sharpening our focus, lowering our expense structure”

Tags – GNOME text tagger

RapperBot Botnet Attack Peaks 50,000+ Attacks Targeting Network Edge Devices

CVE-2025-48260 – Ninja Team GDPR CCPA Compliance Support Missing Authorization Vulnerability

Transform Your Workflow With These 10 Essential Yet Overlooked Linux Tools You Need to Try

CVE-2025-5476 – Sony XAV-AX8500 Bluetooth L2CAP Channel Isolation Authentication Bypass

CVE-2025-53928 – MaxKB Remote Command Execution

Related Posts