Skip to content

MaxKB

v2.9.1 Security

This release includes 2 security fixes for security teams reviewing exposed deployments.

Published 1mo MCP Developer Tools
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 2 known CVEs

Topics

agent agentic-ai llm deepseek-r1 knowledgebase langchain
+6 more
llama3 maxkb mcp-server ollama pgvector qwen3

Affected surfaces

auth rce_ssrf

ReleasePort's take

Moderate signal
editorial:auto 24d

MaxKB v2.9.1 fixes CVE-2026-45413 (plaintext password transmission in password reset) and CVE-2026-45412 (authenticated SSRF in workflow templates). Patch immediately if using password reset or callback-enabled workflows.

Why it matters: Password reset transmitted credentials in plaintext; missing callback validation enabled authenticated SSRF in workflows (CVE-2026-45413, CVE-2026-45412). Update v2.9.1 for all systems using password reset or workflow callbacks.

Summary

AI summary

Fixed high‑risk plaintext password transmission in reset_password and authenticated SSRF via callback URL validation (#CVE-2026-45413, #CVE-2026-45412).

Changes in this release

Security High

Fixed plaintext password transmission in `reset_password` interface (CVE-2026-45413).

Fixed plaintext password transmission in `reset_password` interface (CVE-2026-45413).

Source: granite4.1:30b@2026-05-22-audit

Confidence: low
Security Medium

Passwords no longer transmitted in plaintext via reset_password.

Passwords no longer transmitted in plaintext via reset_password.

Source: llm_adapter@2026-05-21

Confidence: low
Security Medium

Callback URL validation added to workflow template operations.

Callback URL validation added to workflow template operations.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Reply messages preserved after exceeding loop limit.

Reply messages preserved after exceeding loop limit.

Source: llm_adapter@2026-05-21

Confidence: high
Bugfix Medium

API returns data for infinite-loop agent nodes.

API returns data for infinite-loop agent nodes.

Source: llm_adapter@2026-05-21

Confidence: high
Bugfix Medium

Agents import successfully from Template Center.

Agents import successfully from Template Center.

Source: llm_adapter@2026-05-21

Confidence: high
Bugfix Medium

Unselected knowledge bases not retained in retrieval nodes.

Unselected knowledge bases not retained in retrieval nodes.

Source: llm_adapter@2026-05-21

Confidence: high
Bugfix Medium

Users searchable when adding members with large base.

Users searchable when adding members with large base.

Source: llm_adapter@2026-05-21

Confidence: high
Bugfix Medium

Gemini image generation failures fixed.

Gemini image generation failures fixed.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Associated agents visible in reranking model dependencies.

Associated agents visible in reranking model dependencies.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Resources searchable by creator.

Resources searchable by creator.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Image Understanding node text descriptions corrected.

Image Understanding node text descriptions corrected.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Image-to-Video end-frame image parameter is optional.

Image-to-Video end-frame image parameter is optional.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Ctrl+click opens agent panel in new tab.

Ctrl+click opens agent panel in new tab.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Tool startup parameters default without manual saving.

Tool startup parameters default without manual saving.

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Resources can be searched by creator in resource listings.

Resources can be searched by creator in resource listings.

Source: granite4.1:30b@2026-05-22-audit

Confidence: low
Bugfix Low

Resolves image generation failures with Gemini model after adding parameters.

Resolves image generation failures with Gemini model after adding parameters.

Source: granite4.1:30b@2026-05-22-audit

Confidence: low
Bugfix Low

Associated agents now appear in the dependency list of reranking models for multi‑way recall.

Associated agents now appear in the dependency list of reranking models for multi‑way recall.

Source: granite4.1:30b@2026-05-22-audit

Confidence: low
Full changelog

Security Vulnerability Fixes

  • Security Vulnerability: Fixed a high‑risk vulnerability where passwords were transmitted in plaintext via the MaxKB reset_password interface (#CVE‑2026‑45413).
  • Security Vulnerability: Fixed authenticated SSRF risks caused by missing validation of callback URLs during workflow template import/update (#CVE‑2026‑45412).

Bug Fixes

  • Agent: Fixed the issue where reply messages were cleared and a network error appeared after the loop count exceeded the maximum limit in agents with infinite loops.
  • Agent: Fixed the issue where the API returned no data and reported a read‑timeout error under stream=false when calling an agent containing infinite‑loop nodes via API.
  • Agent: Fixed image generation failures after adding parameters for the Gemini image generation model (#5233).
  • Agent: Fixed incorrect text descriptions for the Image Understanding node, and set the end‑frame image of the Image‑to‑Video node as non‑required.
  • Agent: Fixed creation failures when importing agents from the Template Center (#5231).
  • Agent: Fixed the issue where unselected knowledge bases were still retained after unchecking associated knowledge bases and saving with another selected knowledge base in knowledge base retrieval nodes.
  • Agent: Fixed the issue where associated agents were not displayed in the dependent resource list of reranking models used for multi‑way recall (#5249).
  • Agent: Fixed the issue where a new tab was not opened when accessing the agent page by holding Ctrl and clicking the agent panel.
  • Tools: Fixed the issue that startup parameters of newly created tools required manual saving to use default values.
  • Workspace: Fixed the issue that users not displayed could not be searched when adding members with a large user base.
  • Resource Management: Fixed the inability to search resources by creator.
  • Shared Resources: Fixed the inability to search resources by creator.

Security Fixes

  • CVE-2026-45413 — plaintext passwords transmitted via reset_password interface
  • CVE-2026-45412 — authenticated SSRF due to missing callback URL validation during workflow template import/update
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track MaxKB

Get notified when new releases ship.

Sign up free

About MaxKB

All releases →

Related context

Related CVEs

Beta — feedback welcome: [email protected]