Obot AI A.I CyberSecurity Scoring
Obot AI
Company Information
Website:http://www.obot.ai
Employees number:18
Number of followers:2,030
NAICS:5112
Industry Type:Software Development
Homepage:obot.ai
Obot AI Risk Score (AI oriented)
Between 650 and 699
Obot AISoftware Development
Updated:
27/05/2026
27/05/2026
695/1000
Weak
B
Obot AI Global Score (TPRM)
xxxx
Obot AISoftware Development
Score locked

Obot AIWeak
Current Score
695B (WEAK)
01000
2 incidents
-5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
696
JUNE 2026
696
MAY 2026
700
Vulnerability
27 May 2026 • Obot AI
vLLM, FastAPI and Model Context Protocol: BadHost Vulnerability Exposes Sensitive AI Agent Server Endpoints to Attackers
Critical 'BadHost' Vulnerability in Starlette Exposes AI Applications to Unauthorized Access
695
CRITICAL-5
OBOVLLFAS1779892255
Critical "BadHost" Vulnerability in Starlette Exposes AI Applications to Unauthorized Access
A severe security flaw, CVE-2026-48710 (BadHost), has been discovered in the Starlette web framework, putting thousands of AI-powered applications and API services at risk of exploitation. Identified by X41 D-Sec during an OSTIF-sponsored audit, the vulnerability allows attackers to manipulate HTTP request processing, potentially bypassing authentication and accessing restricted endpoints.
The issue stems from improper sanitization of the HTTP Host header in earlier Starlette versions. By crafting malicious requests, attackers can alter the `request.url` object, tricking applications into misclassifying protected routes as legitimate. This enables the bypass of path-based authentication middleware, a common security measure in AI infrastructure, without requiring valid credentials.
The impact is widespread, affecting FastAPI-based services, inference servers (vLLM, LiteLLM), Model Context Protocol (MCP) servers, OpenAI-compatible APIs, and custom AI frameworks. Many AI deployments rely on URL path validation for access control, making them particularly vulnerable. Exploitation could lead to unauthorized access to AI models, data exfiltration, or abuse of compute resources.
Security researchers warn that exploitation is straightforward and does not require authentication, increasing the risk. Attackers could expose hidden endpoints, facilitate lateral movement in poorly segmented AI environments, or compromise sensitive data.
A patch has been released in Starlette 1.0.1, and additional mitigations include strict Host header validation at the application and proxy levels and avoiding sole reliance on path-based access controls. Automated scanning tools, such as Nemesis, can help identify vulnerable deployments.
The vulnerability highlights the growing security risks at the intersection of web frameworks and AI infrastructure, emphasizing the need for proactive patching and robust input validation as AI systems scale.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
APRIL 2026
699
MARCH 2026
698
FEBRUARY 2026
697
JANUARY 2026
696
DECEMBER 2025
695
NOVEMBER 2025
693
OCTOBER 2025
692
SEPTEMBER 2025
691
AUGUST 2025
690
JUNE 2025
750
Breach
01 Jun 2025 • Obot AI
Organizations with exposed MCP servers: 1,800+ MCP servers exposed without authentication: How zero trust can secure the AI agent revolution
Exposed AI Servers and Zero-Click Exploits: A Cybersecurity Crisis Unfolds
686
CRITICAL-64
OBO1778495141
Exposed AI Servers and Zero-Click Exploits: A Cybersecurity Crisis Unfolds
In a stark revelation last summer, Knostic security researchers uncovered 1,862 publicly exposed MCP (Multi-Tool Chain Protocol) servers, leaving organizations’ AI infrastructure alarmingly vulnerable. A manual review of 119 servers confirmed a disturbing reality: every single instance allowed unauthenticated access to internal tool inventories effectively broadcasting AI capabilities to anyone with the means to look. Far from being abandoned test environments, these were production systems with write access to critical assets, including financial databases, social media accounts, and CRM platforms.
The threat escalated in June 2025 when Aim Security disclosed EchoLeak (CVE-2025-32711), a zero-click exploit targeting Microsoft 365 Copilot. Attackers embed malicious prompts in overlooked document elements speaker notes, hidden comments, or metadata exploiting Copilot’s automated processing to silently exfiltrate sensitive data to attacker-controlled servers. The attack requires no user interaction, leaving victims unaware of the breach. This marks a dangerous evolution in AI-driven cyber threats, where even routine business documents become vectors for undetected compromise.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Obot AI ??
What was Obot AI's A.I Rankiteo Cyber Score in June 2026 ??
What was Obot AI's A.I Rankiteo Cyber Score in May 2026 ??
What was Obot AI's A.I Rankiteo Cyber Score in April 2026 ??
What was Obot AI's A.I Rankiteo Cyber Score in March 2026 ??
What was Obot AI's A.I Rankiteo Cyber Score in February 2026 ??
What was Obot AI's A.I Rankiteo Cyber Score in January 2026 ??
What was Obot AI's A.I Rankiteo Cyber Score in December 2025 ??
What was Obot AI's A.I Rankiteo Cyber Score in November 2025 ??
What was Obot AI's A.I Rankiteo Cyber Score in October 2025 ??
What was Obot AI's A.I Rankiteo Cyber Score in September 2025 ??
What was Obot AI's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Obot AI's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Obot AI ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Obot AI's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?