How to fix CVE-2025-45691?

Within 24 hours: Identify all systems running RAGAS versions 0.2.3 through 0.2.14 and isolate them from production if possible; disable multimodal input processing or the retrieved_contexts parameter if business logic permits. Within 7 days: Implement input validation and sanitization controls to reject suspicious URL patterns; establish monitoring for unusual file access patterns on affected systems. Within 30 days: Upgrade to RAGAS v0.2.15 or later once the patch is released; conduct forensic review of access logs to detect potential exploitation.

Is AI / ML affected by CVE-2025-45691?

An arbitrary file read vulnerability in RAGAS v0.2.3-0.2.14 allows attackers to access sensitive files on systems running affected versions through maliciously crafted URL inputs.

CVE-2025-45691

HIGH

2026-03-05 [email protected]

GHSA-v2xr-wvrv-p969

7.5

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Patch Released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 12, 2026 - 22:06 vuln.today

PoC Detected

Mar 10, 2026 - 19:38 vuln.today

Public exploit code

CVE Published

Mar 05, 2026 - 19:16 nvd

HIGH 7.5

Description

An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0.2.3 to v0.2.14. The vulnerability stems from improper validation and sanitization of URLs supplied in the retrieved_contexts parameter when handling multimodal inputs.

Analysis

Technical Context

Classified as CWE-22 (Path Traversal). Affects the retrieved_contexts component of Ragas. An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0.2.3 to v0.2.14. The vulnerability stems from improper validation and sanitization of URLs supplied in the retrieved_contexts parameter when handling multimodal inputs.

Affected Products

Vendor: Vibrantlabsai. Product: Ragas. Component: retrieved_contexts.

Remediation

Monitor vendor advisories for a patch. Validate and sanitize file path inputs. Use allowlists. Restrict network access to the affected service where possible.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +38

POC: +20

Vendor Status

CVE-2025-45691 vulnerability details – vuln.today

Back

CVE-2025-45691

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

CVE-2025-45691

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

External POC / Exploit Code