CVE-2025-6166 – Frdel Agent-Zero Path Traversal Vulnerability

June 17, 2025

CVE ID : CVE-2025-6166

Published : June 17, 2025, 6:15 a.m. | 4 hours, 10 minutes ago

Description : A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This issue affects the function image_get of the file /python/api/image_get.py. The manipulation of the argument path leads to path traversal. Upgrading to version 0.8.4.1 is able to address this issue. The identifier of the patch is 5db74202d632306a883ccce7339c5bdba0d16c5a. It is recommended to upgrade the affected component.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6173 – Webkul QloApps SQL Injection

Next Article CVE-2025-6165 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Modernizing your approach to governance, risk and compliance

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

Parasoft C/C++test 2025.1, Secure Code Warrior AI Security Rules, and more – Daily News Digest

What I Wish Someone Told Me When I Was Getting Into ARIA

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Sam Altman says OpenAI could need a “significant fraction” of the Earth’s power for future artificial intelligence computing

Microsoft’s Windows 95 testing phase was so intense that it crashed cash registers with over $10,000 worth of software

The biggest rival for Microsoft’s Xbox Ally is Valve’s Steam Deck, not Switch 2, so stop comparing the wrong gaming handhelds

Microsoft Copilot for Power Platform

Microsoft Copilot for Power Platform

Integrate Coveo Atomic CLI-Based Hosted Search Page into Adobe Experience Manager (AEM)

Mastering TypeScript: Your Ultimate Guide to Types, Inference & Compatibility

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Hades 2 gets another major update bringing new art, godly powers, and romance as Supergiant gets ready for the game’s full release

Sam Altman says OpenAI could need a “significant fraction” of the Earth’s power for future artificial intelligence computing

Microsoft’s Windows 95 testing phase was so intense that it crashed cash registers with over $10,000 worth of software

CVE-2025-6166 – Frdel Agent-Zero Path Traversal Vulnerability

CISA Flags CVE-2023-0386 as Actively Exploited Linux Kernel Privilege Escalation Threat

Cyberagentschap VS meldt actief misbruik van lek in Linux-kernel

CVE-2025-47774 – Vyper Uninitialized Side Effect Elision in Slice Builtin

CVE-2025-3076 – Elementor Website Builder Pro – Stored Cross-Site Scripting Vulnerability

CVE-2025-40675 – “Bagisto Reflected Cross-Site Scripting (XSS)”

NVIDIA Releases Cosmos-Reason1: A Suite of AI Models Advancing Physical Common Sense and Embodied Reasoning in Real-World Environments

CVE-2025-5502 – TOTOLINK X15 Command Injection Vulnerability

CVE-2025-36560 – A-Blog CMS SSRF Vulnerability

10 personal safety features every Pixel user should know about – and use

Atla AI Introduces the Atla MCP Server: A Local Interface of Purpose-Built LLM Judges via Model Context Protocol (MCP)

CVE-2025-6166 – Frdel Agent-Zero Path Traversal Vulnerability

Related Posts