PT-2025-46192 · Fastjson+1 · Fastjson+1
Published
2025-11-10
·
Updated
2025-11-10
·
CVE-2025-63617
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
ktg-mes versions prior to commit a484f96 (2025-07-03)
Description
The software contains a fastjson deserialization issue. This occurs due to the use of a vulnerable version of fastjson and the deserialization of untrusted input data.
Recommendations
Update to commit a484f96 (2025-07-03) or a later version.
Exploit
Fix
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fastjson
Ktg-Mes