CVE-2025-59956

Exploit

EPSS 0.05%
Veröffentlicht 30.09.2025 11:37:41
Zuletzt bearbeitet 08.10.2025 15:05:53
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

AgentAPI is an HTTP API for Claude Code, Goose, Aider, Gemini, Amp, and Codex. Versions 0.3.3 and below are susceptible to a client-side DNS rebinding attack when hosted over plain HTTP on localhost. An attacker can gain access to the /messages endpoint served by the Agent API. This allows for the unauthorized exfiltration of sensitive user data, specifically local message history, which can include secret keys, file system contents, and intellectual property the user was working on locally. This issue is fixed in version 0.4.0.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Coder ≫ Agentapi Version < 0.4.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.139

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
security-advisories@github.com	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

CWE-290 Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

CWE-350 Reliance on Reverse DNS Resolution for a Security-Critical Action

The product performs reverse DNS resolution on an IP address to obtain the hostname and make a security decision, but it does not properly ensure that the IP address is truly associated with the hostname.

https://github.blog/security/application-security/localhost-dangers-cors-and-dns-rebinding

Technical Description

https://github.com/coder/agentapi/commit/5c425c62447b8a9eac19e9fc5a2eae7f0803f149

Patch

https://github.com/coder/agentapi/pull/49

Patch

Issue Tracking

https://github.com/coder/agentapi/releases/tag/v0.4.0

Release Notes

https://github.com/coder/agentapi/security/advisories/GHSA-w64r-2g3w-w8w4

Patch

Vendor Advisory