CRITICAL🇵🇱 Wersja polska

CVE-2025-12487

CVSS 9.8v3.0pub. 2025-11-06upd. 2026-04-15

oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of oobabooga text-generation-webui. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the trust_remote_code parameter provided to the join endpoint. The issue results from the lack of proper validation of a user-supplied argument before using it to load a model. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-26681.

🤖 AI Analysis
How it works

The vulnerability lies in the handling of the trust_remote_code parameter passed to the join endpoint. The application does not properly validate the value supplied by the user before using it to load a model. An attacker can submit a crafted parameter, forcing the loading of malicious code in the context of the service account under which the service runs.

Impact

An attacker can execute arbitrary code in the context of the service account, which may lead to complete system compromise, data breach, or further lateral movement in the network.

Mitigation & patch

Update oobabooga text-generation-webui to a version containing the patch introduced by commit b5a6904c4ac4049823396090360b6f566f4e4603. Details available in vendor references and ZDI-25-982 advisory.

Who is affected

Installations of oobabooga text-generation-webui — specific versions indicated in vendor references (commit b5a6904c4ac4049823396090360b6f566f4e4603 on GitHub).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References