CVE-2025-1497

CRITICAL
2025-03-10 [email protected] GHSA-2hmp-5wqg-f24h
9.8
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
Analysis Generated
Mar 12, 2026 - 19:50 vuln.today
Patch Released
Oct 03, 2025 - 09:15 nvd
Patch available
CVE Published
Mar 10, 2025 - 14:15 nvd
CRITICAL 9.8

Tags

Python RCE

Description

A vulnerability, that could result in Remote Code Execution (RCE), has been found in PlotAI. Lack of validation of LLM-generated output allows attacker to execute arbitrary Python code. Vendor commented out vulnerable line, further usage of the software requires uncommenting it and thus accepting the risk. The vendor does not plan to release a patch to fix this vulnerability.

Analysis

PlotAI is vulnerable to remote code execution because it executes LLM-generated Python code without validation. The vendor has acknowledged the flaw by commenting out the vulnerable line but does not plan to release a formal patch, leaving users who re-enable the feature at risk.

Technical Context

The application uses an LLM to generate Python plotting code from natural language queries, then executes it without sandboxing or validation (CWE-94). Since LLM outputs can be influenced through prompt injection, any user who can send queries to PlotAI can achieve code execution on the server.

Affected Products

PlotAI (all versions; vendor has no plans to patch)

Remediation

Do not use PlotAI in production or internet-facing environments. If usage is required, run it in a sandboxed container with no network access and limited filesystem permissions.

Priority Score

51
Low Medium High Critical
KEV: 0
EPSS: +1.8
CVSS: +49
POC: 0

Share

CVE-2025-1497 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy