Lucene search
K

6 matches found

CVE
CVE
added 2025/04/17 12:0 a.m.67 views

CVE-2025-43708

CVE-2025-43708 affects Visicut 2.1. The vulnerability arises from insecure deserialization of XML documents containing nested set elements, which can trigger a java.util.HashMap StackOverflowError (e.g., when reference is '../../../set/set[2]'), leading to stack consumption. Multiple sources corr...

7.5CVSS7AI score0.00353EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/04/17 12:0 a.m.23 views

CVE-2025-43708

VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...

3.3CVSS0.00353EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/03/15 2:16 a.m.9 views

CVE-2025-25940

VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...

9.8CVSS7.4AI score0.00724EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/10 12:0 a.m.9 views

CVE-2025-25940

VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...

9.7AI score0.00724EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/03/10 12:0 a.m.15 views

CVE-2025-25940

VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...

0.00724EPSS
Exploits1References2
OSV
OSV
added 2025/03/10 12:0 a.m.7 views

CVE-2025-25940

VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...

9.8CVSS7.7AI score0.00724EPSS
Exploits1References4
Rows per page
Query Builder