JFrog Security Research
< Back
Software Vulnerabilities
Last Updated On 15 Sep, 2025
- Vite arbitrary remote HTML file leakCVE-2025-58752highDiscovered ByOri HollanderPublished on 15 Sep, 2025
- Vite arbitrary restricted remote file leakCVE-2025-58751highDiscovered ByOri HollanderPublished on 15 Sep, 2025
- JFSA-2025-001449533Chaos Mesh debugging server DoSCVE-2025-59358highDiscovered ByNatan NehoraiPublished on 15 Sep, 2025
- JFSA-2025-001449535Chaos Mesh killProcesses command injectionCVE-2025-59360criticalDiscovered ByNatan NehoraiPublished on 15 Sep, 2025
- JFSA-2025-001449536Chaos Mesh cleanIptables command injectionCVE-2025-59361criticalDiscovered ByNatan NehoraiPublished on 15 Sep, 2025
- JFSA-2025-001449534Chaos Mesh cleanTcs command injectionCVE-2025-59359criticalDiscovered ByNatan NehoraiPublished on 15 Sep, 2025
- JFSA-2025-001434277Smolagents Local Python Sandbox EscapeCVE-2025-9959highDiscovered ByNatan NehoraiPublished on 3 Sep, 2025
- JFSA-2025-001379925Flowise JS injection remote code executionCVE-2025-55346criticalDiscovered ByAssaf LevkovichPublished on 14 Aug, 2025
- JFSA-2025-001380578Flowise OS command remote code executionCVE-2025-8943criticalDiscovered ByAssaf LevkovichPublished on 14 Aug, 2025
- JFSA-2025-001378631Codex CLI Symlink Arbitrary File OverwriteCVE-2025-55345highDiscovered ByAssaf LevkovichPublished on 13 Aug, 2025