CVE-2025-51482

nvd nist nuclei

Published: Jul 22, 2025Modified: Oct 7, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Remote Code Execution in letta.server.rest_api.routers.v1.tools.run_tool_from_source in letta-ai Letta 0.7.12 allows remote attackers to execute arbitrary Python code and system commands via crafted payloads to the /v1/tools/run endpoint, bypassing intended sandbox restrictions.

Affected (1)

Products: Letta: Letta

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Letta Letta	Version 0.7.12

Related CWEs

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (3)

https://github.com/letta-ai/letta

Source: cve@mitre.org

Product

https://github.com/letta-ai/letta/pull/2630

Source: cve@mitre.org

ExploitIssue TrackingPatchVendor Advisory

https://www.gecko.security/blog/cve-2025-51482

Source: cve@mitre.org

ExploitThird Party Advisory

Timeline

No history available yet.