JFrog Security Research
Model Threats
Discover
Follow JFrog Security
Home
Model Threats
Discover
Follow JFrog Security
< Back
Software Vulnerabilities
Last Updated On
22 Sep, 2025
171
Vulnerabilities
discovered
JFSA-2025-001471363
txtai arbitrary file write
high
CVE-2025-10854
CVE-2025-10854
CVE-2025-10854
high
Discovered By
Ori Hollander
●
Published on
22 Sep, 2025
●
XRAY-720930
PickleScan Unsafe Globals Check Bypass via Submodule Imports
critical
CVE-2025-10157
CVE-2025-10157
CVE-2025-10157
critical
Discovered By
David Cohen
●
Published on
21 Sep, 2025
●
XRAY-720938
PickleScan Bypass via ZIP file bad CRC
critical
CVE-2025-10156
CVE-2025-10156
CVE-2025-10156
critical
Discovered By
David Cohen
●
Published on
21 Sep, 2025
●
XRAY-720936
PickleScan Bypass via File Extension Mismatch
critical
CVE-2025-10155
CVE-2025-10155
CVE-2025-10155
critical
Discovered By
David Cohen
●
Published on
21 Sep, 2025
●
Vite arbitrary remote HTML file leak
high
CVE-2025-58752
CVE-2025-58752
CVE-2025-58752
high
Discovered By
Ori Hollander
●
Published on
15 Sep, 2025
●
Vite arbitrary restricted remote file leak
high
CVE-2025-58751
CVE-2025-58751
CVE-2025-58751
high
Discovered By
Ori Hollander
●
Published on
15 Sep, 2025
●
JFSA-2025-001449533
Chaos Mesh debugging server DoS
high
CVE-2025-59358
CVE-2025-59358
CVE-2025-59358
high
Discovered By
Natan Nehorai
●
Published on
15 Sep, 2025
●
JFSA-2025-001449535
Chaos Mesh killProcesses command injection
critical
CVE-2025-59360
CVE-2025-59360
CVE-2025-59360
critical
Discovered By
Natan Nehorai
●
Published on
15 Sep, 2025
●
JFSA-2025-001449536
Chaos Mesh cleanIptables command injection
critical
CVE-2025-59361
CVE-2025-59361
CVE-2025-59361
critical
Discovered By
Natan Nehorai
●
Published on
15 Sep, 2025
●
JFSA-2025-001449534
Chaos Mesh cleanTcs command injection
critical
CVE-2025-59359
CVE-2025-59359
CVE-2025-59359
critical
Discovered By
Natan Nehorai
●
Published on
15 Sep, 2025
●
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18