Threats Tagged 'cve-2025-56422'
View all threats tagged with 'cve-2025-56422'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2025-56422'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2025-56422: n/aCVE-2025-56422 0 CVE-2025-56422 is a critical deserialization vulnerability in LimeSurvey versions prior to 6.15.0+250623 that allows unauthenticated remote attackers to execute arbitrary code on the server. This vulnerability stems from unsafe deserialization (CWE-502), enabling attackers to send crafted serialized data to the application, leading to full system compromise without user interaction or privileges. The CVSS score of 9.8 reflects its high impact on confidentiality, integrity, and availability. No known exploits are currently reported in the wild, but the severity and ease of exploitation make it a significant threat. Organizations running vulnerable LimeSurvey instances should prioritize patching once updates are available and implement network-level protections to mitigate exposure. Countries with widespread LimeSurvey usage and critical reliance on survey data are at higher risk. Immediate attention is required to prevent potential exploitation and data breaches. Join the discussion | CVE Database V5 | 03/10/2026, 00:00:00 UTC Added: 03/10/2026, 18:16:54 UTC |
Showing 1 to 1 of 1 result