cvedb.io
CVE-2026-25640
HIGH · CVSS 7.1
EPSS exploitation probability: 0%
Published 2026-02-06T20:16:11.110 · Last modified 2026-06-30T03:17:43.313

Summary

Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. From 1.34.0 to before 1.51.0, a path traversal vulnerability in the Pydantic AI web UI allows an attacker to serve arbitrary JavaScript in the context of the application by crafting a malicious URL. In affected versions, the CDN URL is constructed using a version query parameter from the request URL. This parameter is not validated, allowing path traversal sequences that cause the server to fetch and serve attacker-controlled HTML/JavaScript from an arbitrary source on the same CDN, instead of the legitimate chat UI package. If a victim clicks the link or visits it via an iframe, attacker-controlled code executes in their browser, enabling theft of chat history and other client-side data. T

Affected products

pydantic — pydantic_ai

Does this affect you?

Add your gear to cvedb and we'll alert you only when pydantic ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.