CVE-2025-3590

MEDIUM

Adianti Framework <8.0 - Deserialization

Title source: llm

Description

A vulnerability has been found in Adianti Framework up to 8.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to deserialization. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 8.1 is able to address this issue. It is recommended to upgrade the affected component.

References (4)

[Various Sources] https://gist.github.com/mcdruid/8412cfb55f443a1344ff41af0ce1b215

[Permissions Required, VDB Entry] https://vuldb.com/?ctiid.304645

[Permissions Required, VDB Entry] https://vuldb.com/?id.304645

[Permissions Required, VDB Entry] https://vuldb.com/?submit.550296

Scores

CVSS v3 6.3

EPSS 0.0021

EPSS Percentile 42.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Classification

CWE

CWE-502 CWE-20

Status draft

Timeline

Published Apr 14, 2025

Tracked Since Feb 18, 2026