Cognita

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-27519	TrueFoundry Cognita	Cri	0.54	—	0.01		Mar 7, 2025	Cognita is a RAG (Retrieval Augmented Generation) Framework for building modular, open source applications for production by TrueFoundry. A path traversal issue exists at /v1/internal/upload-to-local-directory which is enabled when the Local env variable is set to true, such as…
CVE-2025-27518	TrueFoundry Cognita	Med	0.38	—	0.00		Mar 7, 2025	Cognita is a RAG (Retrieval Augmented Generation) Framework for building modular, open source applications for production by TrueFoundry. An insecure CORS configuration in the Cognita backend server allows arbitrary websites to send cross site requests to the application. This…

CVE-2025-27519CriMar 7, 2025
TrueFoundry
Cognita
risk 0.54cvss —epss 0.01
Cognita is a RAG (Retrieval Augmented Generation) Framework for building modular, open source applications for production by TrueFoundry. A path traversal issue exists at /v1/internal/upload-to-local-directory which is enabled when the Local env variable is set to true, such as…
CVE-2025-27518MedMar 7, 2025
TrueFoundry
Cognita
risk 0.38cvss —epss 0.00
Cognita is a RAG (Retrieval Augmented Generation) Framework for building modular, open source applications for production by TrueFoundry. An insecure CORS configuration in the Cognita backend server allows arbitrary websites to send cross site requests to the application. This…