CVE-2025-25295: 
Python vulnerability analysis and mitigation

Label Studio, an open source data labeling tool, was found to contain a path traversal vulnerability (CVE-2025-25295) in SDK versions prior to 1.0.10. The vulnerability was discovered on February 14, 2025, affecting Label Studio versions before 1.16.0 which specified vulnerable SDK versions as dependencies. The issue was confirmed in Label Studio version 1.13.2.dev0 (NVD, GitHub Advisory).

The vulnerability exists in the VOC, COCO, and YOLO export functionalities. These functions invoke a download function on the label-studio-sdk python package, which fails to validate file paths when processing image references during task exports. The flaw allows path traversal sequences in the image field to bypass intended directory restrictions. The vulnerability received a CVSS v4.0 base score of 8.7 (High), with attack vector metrics indicating network accessibility, low attack complexity, and no special privileges required (GitHub Advisory).

This authentication-required vulnerability enables arbitrary file reads from the server filesystem. When successfully exploited, it can lead to potential exposure of sensitive information including configuration files, credentials, and confidential data. The vulnerability requires authentication to exploit, which somewhat limits its potential impact (GitHub Advisory).

Users are advised to upgrade to Label Studio version 1.16.0 or newer, which includes the patched SDK version 1.0.10. The fix implements proper path validation and sanitization, adds an allowlist of directories and file types, and implements file access controls (GitHub Advisory, SDK Commit).