CVE-2025-10975
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-25

Last updated on: 2026-04-29

Assigner: VulDB

Description
A vulnerability was found in GuanxingLu vlarl up to 31abc0baf53ef8f5db666a1c882e1ea64def2997. This vulnerability affects the function experiments.robot.bridge.reasoning_server::run_reasoning_server of the file experiments/robot/bridge/reasoning_server.py of the component ZeroMQ. Performing manipulation of the argument Message results in deserialization. Remote exploitation of the attack is possible. The exploit has been made public and could be used. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-25
Last Modified
2026-04-29
Generated
2026-06-16
AI Q&A
2025-09-26
EPSS Evaluated
2026-06-15
NVD
CVE-2025-10975
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
zeromq zmq *
guanxinglu vlarl *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-502 The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.
CWE-20 The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the function run_reasoning_server of the file experiments/robot/bridge/reasoning_server.py in the ZeroMQ component of GuanxingLu. It involves manipulation of the argument Message that leads to deserialization, which can be exploited remotely. The exploit has been made public and could be used by attackers.

Impact Analysis

The vulnerability allows remote attackers to perform deserialization through manipulated input, potentially leading to unauthorized actions or compromise of the affected system. Given the CVSS scores, it can impact confidentiality, integrity, and availability to some extent, and requires low attack complexity but some privileges.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-10975. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart