Robert Morgan - Daily CVE Reports (Page 2)

CVE-2025-32375: Insecure Deserialization in BentoML Runner Server Leads to RCE

Executive Summary CVE-2025-32375 describes a critical vulnerability in BentoML's runner server, stemming from insecure deserialization. By crafting malicious POST requests with specific headers, an attacker can achieve Remote Code Execution (RCE) on the server. This allows for unauthorized arbitrary code execution, potentially leading to initial access, information disclosure,

CVE-2025-3248: Critical Code Injection Vulnerability in Langflow

Executive Summary CVE-2025-3248 is a critical code injection vulnerability affecting Langflow versions prior to 1.3.0. This vulnerability allows a remote, unauthenticated attacker to execute arbitrary code on the server by sending crafted HTTP requests to the /api/v1/validate/code endpoint. With a CVSS score of 9.8,

CVE-2025-2945: Remote Code Execution in pgAdmin 4

Executive Summary CVE-2025-2945 is a critical Remote Code Execution (RCE) vulnerability affecting pgAdmin 4, a web-based management tool for PostgreSQL databases. The vulnerability stems from the unsafe use of the eval() function in Python, allowing attackers to execute arbitrary code on the server. Specifically, two POST endpoints, /sqleditor/query_tool/

CVE-2025-31481: GraphQL Security Bypass in API Platform Core via Relay Node Identification

Executive Summary CVE-2025-31481 is a critical vulnerability affecting API Platform Core versions prior to 4.0.22. This vulnerability allows attackers to bypass configured security measures on GraphQL query operations by leveraging the Relay special node type. The root cause lies in the improper handling of Relay node identification, leading

CVE-2025-30065: Critical Deserialization Vulnerability in Apache Parquet's parquet-avro Module

Executive Summary CVE-2025-30065 is a critical vulnerability affecting the parquet-avro module of Apache Parquet Java. This vulnerability, classified as a deserialization of untrusted data flaw (CWE-502), allows unauthenticated remote attackers to execute arbitrary code on systems processing maliciously crafted Parquet files. The vulnerability exists in versions 1.15.0 and

CVE-2025-31132: Raven Remote Code Execution via Improper Input Validation

Executive Summary CVE-2025-31132 is a critical vulnerability affecting Raven, an open-source messaging platform. This vulnerability allows a logged-in user to execute arbitrary code on the server via a specific API endpoint due to improper input validation. The vulnerability has a CVSS v3.1 score of 8.1, indicating a high

injection

CVE-2025-2071: Critical OS Command Injection in FAST LTA Silent Brick WebUI

Executive Summary CVE-2025-2071 describes a critical OS Command Injection vulnerability affecting the FAST LTA Silent Brick WebUI. This vulnerability allows unauthenticated remote attackers to execute arbitrary operating system commands on the underlying Linux system. The root cause lies in the insufficient sanitization of user-supplied input passed to system-level commands via

ftp

CVE-2025-2825: CrushFTP Unauthenticated Access Vulnerability

Executive Summary CVE-2025-2825 is a critical vulnerability affecting CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0. This vulnerability allows unauthenticated remote attackers to bypass authentication and gain unauthorized access to the CrushFTP server. The root cause lies in improper authentication handling,

Dos

CVE-2025-30358: Mesop Class Pollution Vulnerability Leading to DoS and Jailbreak Attacks

Executive Summary CVE-2025-30358 describes a class pollution vulnerability affecting Mesop, a Python-based UI framework. Versions prior to 0.14.1 are susceptible to attackers overwriting global variables and class attributes in specific Mesop modules during runtime. This can lead to denial-of-service (DoS) attacks and, potentially, jailbreak attacks when interacting with

xss

CVE-2025-27405: Cross-Site Scripting Vulnerability in Icinga Web 2 Embedded Content

Executive Summary CVE-2025-27405 is a cross-site scripting (XSS) vulnerability affecting Icinga Web 2, a widely used open-source monitoring web interface. This vulnerability allows an attacker to inject arbitrary JavaScript code into the Icinga Web 2 interface by crafting a malicious URL. If a user clicks on this crafted URL, the

vmware

CVE-2025-22230: Authentication Bypass Vulnerability in VMware Tools for Windows

Executive Summary CVE-2025-22230 describes an authentication bypass vulnerability affecting VMware Tools for Windows. This vulnerability stems from improper access control within the affected versions. A local, non-administrative user within a guest virtual machine (VM) can exploit this flaw to perform actions that should require elevated privileges. The CVSS score of

Kubernetes

CVE-2025-29778: Kyverno Ignores subjectRegExp and IssuerRegExp Leading to Improper Authorization

Executive Summary CVE-2025-29778 is a security vulnerability affecting Kyverno, a policy engine designed for Kubernetes. This vulnerability allows attackers to bypass intended authorization controls by exploiting the fact that Kyverno versions prior to 1.14.0-alpha.1 incorrectly ignore the subjectRegExp and IssuerRegExp fields during keyless signature verification. This oversight