CVE-2025-27778
CVE-2025-27778 affects Applio's infer.py deserialization routine. Versions 3.2.8-bugfix and earlier are vulnerable to unsafe deserialization, enabling remote code execution. A fix exists on the project’s main branch but has not been released in a numbered version, leaving users on older releases ...