CVE-2025-4740

MEDIUM

BeamCtrl Airiana <11.0 - Deserialization

Title source: llm

Description

A vulnerability was found in BeamCtrl Airiana up to 11.0. It has been declared as problematic. This vulnerability affects unknown code of the file coef. The manipulation leads to deserialization. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

References (5)

[Permissions Required, VDB Entry] https://vuldb.com/?ctiid.309040

[Permissions Required, VDB Entry] https://vuldb.com/?id.309040

[Permissions Required, VDB Entry] https://vuldb.com/?submit.570888

[Issue Tracking] https://github.com/BeamCtrl/Airiana/issues/42

[Issue Tracking] https://github.com/BeamCtrl/Airiana/issues/42#issue-3037828880

Scores

CVSS v3 5.3

EPSS 0.0014

EPSS Percentile 33.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Classification

CWE

CWE-502 CWE-20

Status draft

Timeline

Published May 16, 2025

Tracked Since Feb 18, 2026