4 matches found
CVE-2025-13712
Tencent HunyuanDiT merge Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent HunyuanDiT. User interaction is required to exploit this vulnerability in that the target must...
CVE-2025-13707
Tencent HunyuanDiT modelresume Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent HunyuanDiT. User interaction is required to exploit this vulnerability in that the target...
CVE-2025-13712
Tencent HunyuanDiT merge Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent HunyuanDiT. User interaction is required to exploit this vulnerability in that the target must...
CVE-2025-13712
CVE-2025-13712 affects Tencent HunyuanDiT via the merge endpoint, where deserialization of untrusted data can lead to Remote Code Execution with root privileges. The flaw arises from missing validation of user-supplied data. Public sources (ZDI-25-1028 and related records) confirm the vulnerabili...