GT Edge AI Platform Insecure Permissions Vulnerability in Agents API Allowing Unauthorized Access to Sensitive Information

Vulnerability

A vulnerability exists in the GT Edge AI Platform, specifically in the Community Edition, prior to version 2.0.12. The issue arises from insecure permissions in the /api/v1/agents API, which allows unauthorized attackers to access sensitive information. This vulnerability could lead to unauthorized information disclosure, including system prompts and confidential details about AI agents.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information, including system prompts and other confidential data related to AI agents.

Added: Dec 22, 2025, 7:19 PM

Updated: Dec 23, 2025, 1:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GT Edge AI Platform Insecure Permissions Vulnerability in Agents API Allowing Unauthorized Access to Sensitive Information

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating