CVE-2025-57697: AstrBot has an arbitrary file read vulnerability in function _encode_image_bs64

November 7, 2025

AstrBot Project v3.5.22 has an arbitrary file read vulnerability in function _encode_image_bs64. Since the _encode_image_bs64 function defined in entities.py opens the image specified by the user in the request body and returns the image content as a base64-encoded string without checking the legitimacy of the image path, attackers can construct a series of malicious URLs to read any specified file, resulting in sensitive data leakage.

References

github.com/AstrBotDevs/AstrBot
github.com/DYX217/vulnerability-explore/blob/main/1/README.md
github.com/advisories/GHSA-vm2f-46xc-5jc3
nvd.nist.gov/vuln/detail/CVE-2025-57697

Code Behaviors & Features

Detect and mitigate CVE-2025-57697 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →