7 matches found
CVE-2025-2622
A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to...
com.aizuda:snail-job-client-common (>=1.0.0 <=1.10.0-beta1), com.aizuda:snail-job-client-job-core (>=1.0.0 <=1.10.0-beta1) +26 more potentially affected by CVE-2025-2622 via com.aizuda:snail-job-common-core (>=1.0.0-beta1 <=1.4.0-beta1-jdk8)
com.aizuda:snail-job-common-core MAVEN version =1.0.0-beta1, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.10.0, =1.0.0, =1.0.0, =1.1.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.10.0-beta1 and more Source cves: CVE-2025-2622 Source advisory: SNYK:JAVA-COMAIZUDA-9667344...
CVE-2025-2622
creationtimestamp| type| source ---|---|--- 2025-03-22 17:44:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkybpojeou26 2025-03-22 21:14:42+00:00| seen| https://t.me/cvedetector/20880 2025-12-11 09:24:49+00:00| seen| https://gist.github.com/Liyw979/5f9fe6121ac99c7be2f2359c9259b...
CVE-2025-2622
A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to...
CVE-2025-2622 aizuda snail-job Workflow-Task Management Module check-node-expression getRuntime deserialization
A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to...
CVE-2025-2622 aizuda snail-job Workflow-Task Management Module check-node-expression getRuntime deserialization
A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to...
CVE-2025-2622
Aizuda snail-job 1.4.0 is affected by a Deserialization of Untrusted Data in the getRuntime function of /snail-job/workflow/check-node-expression (Workflow-Task Management Module). The nodeExpression argument manipulation leads to deserialization, enabling a remote attack. Exploitation details ar...