CVE-2025-10433 | 1Panel-dev MaxKB up to 2.0.2/2.1.0 debug code deserialization

A vulnerability was found in 1Panel-dev MaxKB up to 2.0.2/2.1.0 and classified as critical. This issue affects some unknown processing of the file /admin/api/workspace/default/tool/debug. Executing manipulation of the argument code can lead to deserialization.

This vulnerability is handled as CVE-2025-10433. The attack can be executed remotely. Additionally, an exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More