CVE-2026-25592
Description
Semantic Kernel is an SDK used to build, orchestrate, and deploy AI agents and multi-agent systems. Prior to 1.71.0, an Arbitrary File Write vulnerability has been identified in Microsofts Semantic Kernel.NET SDK, specifically within theSessionsPythonPlugin. The problem has been fixed in Microsoft.SemanticKernel.Core version 1.71.0. As a mitigation, users can create a Function Invocation Filter which checks the arguments being passed to any calls to DownloadFileAsync or UploadFileAsync and ensures the provided localFilePath is allow listed.
Risk Information
Base Score
9.9
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.058
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2026-25592 are fixed in Nuget - Microsoft.SemanticKernel.Core 1.71.0 | Windows |
| Vulnerabilities CVE-2026-25592 are fixed in Python-semantic-kernel 1.39.3 | Windows |
| Vulnerabilities CVE-2026-25592 are fixed in Nuget - Microsoft.SemanticKernel.Core for Linux 1.71.0 | Linux |
| Vulnerabilities CVE-2026-25592 are fixed in Python-semantic-kernel for linux 1.39.3 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234