Vulnerabilities in OpenBMB
6 resultsCVE-2026-3954MEDIUMOpenBMB XAgent workspace.py workspace path traversalEPSS 0.5%CVE-2026-4959MEDIUMOpenBMB XAgent ShareServer WebSocket Endpoint share.py check_user missing authenticationEPSS 0.4%CVE-2025-6281MEDIUMOpenBMB XAgent community path traversalEPSS 0.4%CVE-2026-4958LOWOpenBMB XAgent WebSocket Endpoint replayer.py ReplayServer.send_data authorizationEPSS 0.4%CVE-2026-4957MEDIUMOpenBMB XAgent API Key function_handler.py FunctionHandler.handle_tool_call log fileEPSS 0.3%CVE-2024-2007MEDIUMOpenBMB XAgent Privileged Mode sandboxEPSS 0.3%