Threats Tagged 'cve-2025-62593'
View all threats tagged with 'cve-2025-62593'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2025-62593'
Click on any threat for detailed analysis and mitigation recommendations
Red Hat Security Advisory: Red Hat AI Inference Server 3.2.5 (CUDA)CVE-2025-9230 0 Red Hat AI Inference Server 3. 2. 5 (CUDA) is affected by multiple vulnerabilities identified under CVE-2025-9230 and related CVEs. These vulnerabilities involve various weakness types such as buffer overflows, improper input validation, and code injection risks. The advisory indicates the availability of the updated Red Hat AI Inference Server 3. 2. 5 (CUDA) version, but no explicit patch or fix details are provided in the advisory content. No known exploits in the wild have been reported. The severity is classified as high, reflecting the potential impact of these vulnerabilities if exploited. Join the discussion | GCVE Database | 12/15/2025, 15:38:04 UTC Added: 05/26/2026, 20:58:28 UTC |
Red Hat Security Advisory: RHOAI 3.3 - Red Hat OpenShift AICVE-2024-25621 0 Red Hat OpenShift AI 3. 3 has a critical security advisory (RHSA-2026:3713) addressing multiple vulnerabilities including CVE-2024-25621 and 45 additional CVEs. The advisory announces updated images for Red Hat OpenShift AI 3. 3 but does not specify individual vulnerability details or fixes. No explicit patch links or direct fixes are provided in the advisory content. Users are directed to Red Hat documentation for upgrade instructions to apply the errata update. The advisory covers a broad range of CWEs indicating diverse vulnerability types. There are no known exploits in the wild reported at this time. Join the discussion | GCVE Database | 03/04/2026, 07:18:30 UTC Added: 05/26/2026, 20:58:12 UTC |
CVE-2025-62593: CWE-94: Improper Control of Generation of Code ('Code Injection') in ray-project rayCVE-2025-62593 0 Ray is an AI compute engine. Prior to version 2.52.0, developers working with Ray as a development tool can be exploited via a critical RCE vulnerability exploitable via Firefox and Safari. This vulnerability is due to an insufficient guard against browser-based attacks, as the current defense uses the User-Agent header starting with the string "Mozilla" as a defense mechanism. This defense is insufficient as the fetch specification allows the User-Agent header to be modified. Combined with a DNS rebinding attack against the browser, and this vulnerability is exploitable against a developer running Ray who inadvertently visits a malicious website, or is served a malicious advertisement (malvertising). This issue has been patched in version 2.52.0. Join the discussion | CVE Database V5 | 11/26/2025, 22:28:28 UTC Added: 11/26/2025, 22:40:03 UTC |
Showing 1 to 3 of 3 results