CVE-2025-10965 | LazyAGI LazyLLM up to 0.6.1 server.py lazyllm_call deserialization (Issue 764)

Inserito da Angelo Barbosa | Set 25, 2025 | CVE

A vulnerability labeled as critical has been found in LazyAGI LazyLLM up to 0.6.1. Affected by this issue is the function lazyllm_call of the file lazyllm/components/deploy/relay/server.py. Such manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2025-10965. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2025-10965 | LazyAGI LazyLLM up to 0.6.1 server.py lazyllm_call deserialization (Issue 764)

Post correlati

CVE-2024-27686 | MikroTik RouterOS 5.0/6.44/6.49.10 SMB Request denial of service (ID 177811)

CVE-2025-9966 | Novakon P V2001.A.c518o2 privileges management

CVE-2024-2635 | Cegid Meta4 HR 819.001.022 Configuration Page redirect

CVE-2024-29731 | SportsNET 4.0.1 checkBlindFields idChallenge/idEmpresa sql injection