EUVD-2025-6599

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Critical vulnerability in viames Pair Framework allows remote deserialization via getCookieContent function

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-2376	17 Mar 202512:47	–	circl
CNNVD	Pair 代码问题漏洞	17 Mar 202500:00	–	cnnvd
CVE	CVE-2025-2376	17 Mar 202512:00	–	cve
Cvelist	CVE-2025-2376 viames Pair Framework PHP Object UserRemember.php getCookieContent deserialization	17 Mar 202512:00	–	cvelist
NVD	CVE-2025-2376	17 Mar 202512:15	–	nvd
RedhatCVE	CVE-2025-2376	19 Mar 202512:20	–	redhatcve
Snyk	Deserialization of Untrusted Data	17 Mar 202512:40	–	snyk
Vulnrichment	CVE-2025-2376 viames Pair Framework PHP Object UserRemember.php getCookieContent deserialization	17 Mar 202512:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "566a7480-1907-3524-8e9f-0f7d4b2e6e95",
        "vendor": {
          "name": "viames"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "2752054e-ef05-3765-aff9-6fa2c5b91ea1",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.3"
      },
      {
        "id": "3da52f6a-b385-3ed9-951e-6db0542205ca",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.10"
      },
      {
        "id": "4b2aa8de-5293-3b98-8bc8-f80f52575052",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.5"
      },
      {
        "id": "4e34bd4f-71f0-3589-a455-2289afca40c0",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.4"
      },
      {
        "id": "73934cda-eaa1-39ae-95b8-a8797d4ecb69",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.7"
      },
      {
        "id": "74cd3d07-8629-3dd9-95ba-1e0147cc3c1f",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.1"
      },
      {
        "id": "aa74b05b-f1b7-3042-bebd-e04337c168fd",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.9"
      },
      {
        "id": "c92dda4a-9925-3e20-97e0-013f063257d9",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.2"
      },
      {
        "id": "e2a59241-c33a-346b-98e6-acad82997052",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.11"
      },
      {
        "id": "e7203a4f-f09c-3f3f-a2c6-f1256b6e0fd8",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.0"
      },
      {
        "id": "e9722de7-85b3-35cc-86b7-267d1cd1d8f3",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.6"
      },
      {
        "id": "f6c99f5f-4979-3957-bace-ccbc60fb0dd2",
        "product": {
          "name": "Pair Framework"
        },
        "product_version": "1.9.8"
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-2376
gist	www.gist.github.com/mcdruid/1997e10026833d2d1f3e359d75b5912a
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

03 Oct 2025 20:07Current

7.5High risk

Vulners AI Score7.5

CVSS 46.9

CVSS 3.17.3

CVSS 27.5

CVSS 37.3

EPSS0.00197

SSVC