Описание
DSPy does not properly restrict file reads
The overly permissive sandbox configuration in DSPy allows attackers to steal sensitive files in cases when users build an AI agent which consumes user input and uses the “PythonInterpreter” class.
Пакеты
Наименование
dspy
pip
Затронутые версииВерсия исправления
<= 3.0.3
Отсутствует
Связанные уязвимости
CVSS3: 5.9
nvd
3 месяца назад
The overly permissive sandbox configuration in DSPy allows attackers to steal sensitive files in cases when users build an AI agent which consumes user input and uses the “PythonInterpreter” class.