Lucene search
K

11 matches found

OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-427 Modular Max Serve has Unsafe Deserialization vulnerability

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

9.3CVSS6.3AI score0.00297EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2025/11/28 12:2 a.m.13 views

CVE-2025-60455

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

8.4CVSS7.4AI score0.00297EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2025/11/18 9:32 p.m.7 views

Modular Max Serve has Unsafe Deserialization vulnerability

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

8.4CVSS7.5AI score0.00297EPSS
Exploits1References8Affected Software1
OSV
OSV
added 2025/11/18 9:32 p.m.4 views

GHSA-7XCV-9J6C-2FMC Modular Max Serve has Unsafe Deserialization vulnerability

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

9.3CVSS7.4AI score0.00297EPSS
Exploits1References8
EUVD
EUVD
added 2025/11/18 9:32 p.m.7 views

EUVD-2025-198078

Modular Max Serve has Unsafe Deserialization vulnerability...

6.7AI score0.00297EPSS
Exploits1References7
NVD
NVD
added 2025/11/18 7:15 p.m.11 views

CVE-2025-60455

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

8.4CVSS0.00297EPSS
Exploits1References6
CVE
CVE
added 2025/11/18 12:0 a.m.50 views

CVE-2025-60455

Modular Max Serve contains an unsafe deserialization vulnerability (CVE-2025-60455) that can lead to arbitrary code execution when the --experimental-enable-kvcache-agent feature is enabled. Affected versions are prior to 25.6; exploit would require local access (attack vector LOCAL) with no user...

8.4CVSS7.3AI score0.00297EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/11/18 12:0 a.m.8 views

CVE-2025-60455

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

8.4CVSS7.4AI score0.00297EPSS
Exploits1References8
Cvelist
Cvelist
added 2025/11/18 12:0 a.m.9 views

CVE-2025-60455

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

0.00297EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/11/18 12:0 a.m.2 views

CVE-2025-60455

Unsafe Deserialization vulnerability in Modular Max Serve before 25.6, specifically when the "--experimental-enable-kvcache-agent" feature is used allowing attackers to execute arbitrary code...

7.1AI score0.00297EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.8 views

PT-2025-47378

Name of the Vulnerable Software and Affected Versions Modular Max Serve versions prior to 25.6 Description An unsafe deserialization issue exists in Modular Max Serve when the "--experimental-enable-kvcache-agent" feature is utilized. This allows attackers to potentially execute arbitrary code. T...

9.3CVSS7.4AI score0.00297EPSS
Exploits1References19
Rows per page
Query Builder