CVE-2025-23045 | cvat up to 2.25.x Nuclio Function Container deserialization

Posted by Angelo Barbosa | Jan 28, 2025 | CVE

A vulnerability was found in cvat up to 2.25.x. It has been rated as critical. Affected by this issue is some unknown functionality of the component Nuclio Function Container. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2025-23045. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-23045 | cvat up to 2.25.x Nuclio Function Container deserialization

Related Posts

CVE-2024-27186 | Joomla CMS up to 4.4.6/5.1.2 Mail Template cross site scripting

CVE-2024-37185 | OpenHarmony up to 4.0.1 Pre-installed Apps out-of-bounds write

CVE-2024-45610 | GLPI up to 10.0.16 Cable Form cross site scripting

CVE-2024-25101 | Maspik Spam Blacklist Plugin up to 0.10.6 on WordPress Setting cross site scripting