 |
Post AwjOSgX0bfnJsZXmyG by [email protected] |
 |
More posts by [email protected] |
|
Post #AwjNk8ypzIvH53K0sy by [email protected] |
|
0 likes, 1 repeats |
|
|
|
sev:CRIT RCE in ms-swift. https://github.com/Anchor0221/CVE-2025-50460 |
|
|
|
Post #AwjNtkminhMcw4EkkK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w Crow, that's the unit tests. Why did the unit tests get a cve? |
|
|
|
Post #AwjO2pV8dOp8AZLA0G by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Sempf Good catch. IDK.https://www.cve.org/CVERecord?id=CVE-2025-50460A remote … |
|
|
|
Post #AwjOJmNhUIMNPqwYpE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Sempf Related:https://www.cve.org/CVERecord?id=CVE-2025-50472The modelscope/ms… |
|
|
|
Post #AwjOOAB0xVpWNH6Goa by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w Sure it can lead to a full system compromise if you run the unit test col… |
|
|
|
Post #AwjOSgX0bfnJsZXmyG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w @Sempf So user-supplied yaml -> CI/CD for deployment -> RCE during … |
|
|
|
Post #AwjOepaEmEnRQdqV2u by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mttaggart @cR0w You know that's valid given the supply chain problems we&#… |
|
|
|
Post #AwjOooIaPNTaL9LdyK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w Okay now that's a deserialization vuln. That's probably totally l… |
|
|
|
Post #AwjPBiXE0KvP7l7Nw0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@Sempf I meant related because they were published at the same time for the sam… |
|
|
|
Post #AwjUzyRrc0ISjGOUam by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w Oh oh oh, yeah, I got that. Yeah, this one way mo cool. |
