CVE-2025-10950

geyang ml-logger Ping server.py log_handler deserialization

Description

A vulnerability was determined in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. Affected is the function log_handler of the file ml_logger/server.py of the component Ping Handler. This manipulation of the argument data causes deserialization. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.

INFO

Published Date :

2025-09-25T14:32:09.236Z

Last Modified :

2025-09-25T15:48:44.772Z

Source :

VulDB

AFFECTED PRODUCTS

The following products are affected by CVE-2025-10950 vulnerability.

Vendors	Products
Geyang	Ml-logger

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-10950.

URL	Resource
https://github.com/geyang/ml-logger/issues/72
https://vuldb.com/?ctiid.325820
https://vuldb.com/?id.325820
https://vuldb.com/?submit.652461

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Detailed values of each vector for above chart.

Access Vector

Access Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact