Deepaudit

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-2532 MEDIUM PATCH This Month

Server-side request forgery in Deepaudit versions up to 3.0.3 allows authenticated remote attackers to manipulate the IP Address Handler component in the embedding configuration endpoint, potentially enabling them to perform arbitrary network requests from the affected server. The vulnerability requires valid credentials but no user interaction, affecting the AI/ML product's backend services. Upgrading to version 3.0.4 or later resolves this issue.

SSRF AI / ML Deepaudit
NVD GitHub VulDB
CVSS 3.1
6.3
EPSS
0.1%
CVE-2026-25729 MEDIUM PATCH This Month

DeepAudit is a multi-agent system for code vulnerability discovery. [CVSS 6.5 MEDIUM]

Authentication Bypass AI / ML Deepaudit
NVD GitHub
CVSS 3.1
6.5
EPSS
0.0%
CVE-2026-2532
EPSS 0% CVSS 6.3
MEDIUM PATCH This Month

Server-side request forgery in Deepaudit versions up to 3.0.3 allows authenticated remote attackers to manipulate the IP Address Handler component in the embedding configuration endpoint, potentially enabling them to perform arbitrary network requests from the affected server. The vulnerability requires valid credentials but no user interaction, affecting the AI/ML product's backend services. Upgrading to version 3.0.4 or later resolves this issue.

SSRF AI / ML Deepaudit
NVD GitHub VulDB
CVE-2026-25729
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

DeepAudit is a multi-agent system for code vulnerability discovery. [CVSS 6.5 MEDIUM]

Authentication Bypass AI / ML Deepaudit
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy