CVE-2025-6810

Name of the Vulnerable Software and Affected Versions: Mescius ActiveReports.NET (affected versions not specified)

Description: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Mescius ActiveReports.NET. Exploitation requires interaction with the library, and attack vectors may vary depending on the implementation. The flaw resides in the implementation of the ReadValue method, stemming from a lack of proper validation of user-supplied data, leading to deserialization of untrusted data. An attacker can leverage this to execute code within the context of the current process.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.