Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/04/26 6:31 a.m.10 views

CVE-2025-43708

VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...

7.5CVSS7AI score0.00353EPSS
Exploits1References1
nvd
nvd
added 2025/04/17 1:15 a.m.19 views

CVE-2025-43708

VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...

7.5CVSS0.00353EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2025/04/17 12:0 a.m.9 views

CVE-2025-43708

VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...

3.3CVSS4.1AI score0.00353EPSS
Exploits1References3
cvelist
cvelist
added 2025/04/17 12:0 a.m.26 views

CVE-2025-43708

VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...

3.3CVSS0.00353EPSS
Exploits1References3
cve
cve
added 2025/04/17 12:0 a.m.70 views

CVE-2025-43708

CVE-2025-43708 affects Visicut 2.1. The vulnerability arises from insecure deserialization of XML documents containing nested set elements, which can trigger a java.util.HashMap StackOverflowError (e.g., when reference is '../../../set/set[2]'), leading to stack consumption. Multiple sources corr...

7.5CVSS7AI score0.00353EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder