CVE-2025-15246 | aizuda snail-job up to 1.7.0 on macOS API FurySerializer.deserialize argsStr deserialization (ICQV61)

Inserito da Angelo Barbosa | Dic 29, 2025 | CVE

A vulnerability has been found in aizuda snail-job up to 1.7.0 on macOS and classified as critical. Affected by this vulnerability is the function FurySerializer.deserialize of the component API. This manipulation of the argument argsStr causes deserialization.

This vulnerability is registered as CVE-2025-15246. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2025-15246 | aizuda snail-job up to 1.7.0 on macOS API FurySerializer.deserialize argsStr deserialization (ICQV61)

Post correlati

CVE-2024-6681 | witmy my-springsecurity-plus up to 2024-07-04 /api/dept params.dataScope sql injection (IAAGZY)

CVE-2024-33006 | SAP NetWeaver Application Server ABAP and ABAP Platform unrestricted upload

CVE-2024-42234 | Linux Kernel up to 6.9.9 mm deferred_split_scan reference count (fc7facce686b/be9581ea8c05)

CVE-2025-10844 | Portabilis i-Educar up to 2.10 /module/Cadastro/aluno sql injection