PT-2025-10649 · Ashlar Vellum · Ashlar-Vellum Cobalt

Rocco Calvi

+1

·

Publicado

2024-09-13

·

Atualizado

2025-08-08

·

CVE-2025-2015

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Ashlar-Vellum Cobalt (affected versions not specified)
Description The issue is related to a type confusion remote code execution problem when parsing files in Ashlar-Vellum Cobalt.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Type Confusion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-843

Identificadores relacionados

BDU:2025-02613
CVE-2025-2015
ZDI-25-116

Produtos afetados

Ashlar-Vellum Cobalt