CVE-2025-32377

Rasa Pro is a framework for building scalable, dynamic conversational AI assistants that integrate large language models (LLMs). A vulnerability has been identified in Rasa Pro where voice connectors in Rasa Pro do not properly implement authentication even when a token is configured in the credentials.yml file. This could allow an attacker to submit voice data to the Rasa Pro assistant from an unauthenticated source. This issue has been patched for audiocodes, audiocodes_stream, and genesys connectors in versions 3.9.20, 3.10.19, 3.11.7 and 3.12.6.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 2.5

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://github.com/RasaHQ/security-advisories/security/advisories/GHSA-7xq5-54jp-2mfg

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) Rasa Pro es un framework para crear asistentes de IA conversacionales escalables y dinámicos que integran grandes modelos de lenguaje (LLM). Se ha identificado una vulnerabilidad en Rasa Pro donde los conectores de voz no implementan la autenticación correctamente, incluso cuando se configura un token en el archivo credentials.yml. Esto podría permitir que un atacante envíe datos de voz al asistente Rasa Pro desde una fuente no autenticada. Este problema se ha corregido para audiocodes, audiocodes_stream y conectores genesys en las versiones 3.9.20, 3.10.19, 3.11.7 y 3.12.6.

18 Apr 2025, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-18 20:15

Updated : 2026-04-15 00:35

NVD link : CVE-2025-32377

Mitre link : CVE-2025-32377

CVE.ORG link : CVE-2025-32377

JSON object : View

Products Affected

No product.

CWE

CWE-306

Missing Authentication for Critical Function

6.5 /10