CVE-2025-10975
MEDIUMGuanxingLu <31abc0baf53ef8f5db666a1c882e1ea64def2997 - SSRF
Title source: llmDescription
A vulnerability was found in GuanxingLu vlarl up to 31abc0baf53ef8f5db666a1c882e1ea64def2997. This vulnerability affects the function experiments.robot.bridge.reasoning_server::run_reasoning_server of the file experiments/robot/bridge/reasoning_server.py of the component ZeroMQ. Performing manipulation of the argument Message results in deserialization. Remote exploitation of the attack is possible. The exploit has been made public and could be used. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided.
References (5)
Scores
CVSS v3
6.3
EPSS
0.0008
EPSS Percentile
24.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Classification
CWE
CWE-502
CWE-20
Status
draft
Timeline
Published
Sep 25, 2025
Tracked Since
Feb 18, 2026