CVE-2025-63664

Description

Incorrect access control in the /api/v1/conversations/*/messages API of GT Edge AI Platform before v2.0.10-dev allows unauthorized attackers to access other users' message history with AI agents.

PUBLISHED Reserved 2025-10-27 | Published 2025-12-22 | Updated 2025-12-22 | Assigner mitre

References

github.com/p80n-sec/Vulnerability-Research/blob/main/Pending

gist.github.com/p80n-sec/0a0a71a2190d5e6f8083bf6069e7b5f2

cve.org (CVE-2025-63664)

nvd.nist.gov (CVE-2025-63664)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.