CVE-2025-57622 | Step-Video-T2V /vae-api get_data deserialization

Inserito da Angelo Barbosa | Mar 3, 2026 | CVE

A vulnerability marked as critical has been reported in Step-Video-T2V. This impacts the function get_data of the file /vae-api. Performing a manipulation results in deserialization.

This vulnerability is known as CVE-2025-57622. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-57622 | Step-Video-T2V /vae-api get_data deserialization

Post correlati

CVE-2024-39362 | Linux Kernel up to 6.1.94/6.6.33/6.9.4 fs/kernfs/dir.c acpi_bind_one stack-based overflow

CVE-2022-32751 | IBM Security Verify Directory 10.0.0 information disclosure (XFDB-228437)

CVE-2025-11066 | code-projects Online Bidding System 1.0 bidlist.php ID sql injection

CVE-2024-25814 | MyNET up to 26.05 msg cross site scripting