CVE-2025-56816
BaseFortify
Publication date: 2025-09-24
Last updated on: 2025-10-10
Assigner: MITRE
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| running-elephant | datart | 1.0.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-502 | The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid. |
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
Datart 1.0.0-rc.3 has a Directory Traversal vulnerability where attackers can upload arbitrary YAML files to a specific configuration path. The application uses SnakeYAML's unsafe load() or loadAs() methods to parse these files without sanitizing the input, allowing attackers to instantiate arbitrary classes through deserialization. This can potentially lead to remote code execution.
How can this vulnerability impact me? :
This vulnerability can allow attackers to execute arbitrary code remotely on the affected system by exploiting unsafe YAML deserialization. This can lead to full system compromise, data theft, or disruption of services.