CVE-2025-14542
Unknown Unknown - Not Provided
Remote Manual Endpoint Manipulation Enables Client-Side Exploitation

Publication date: 2025-12-13

Last updated on: 2025-12-13

Assigner: JFrog

Description
The vulnerability arises when a client fetches a tools’ JSON specification, known as a Manual, from a remote Manual Endpoint. While a provider may initially serve a benign manual (e.g., one defining an HTTP tool call), earning the clients’ trust, a malicious provider can later change the manual to exploit the client.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-13
Last Modified
2025-12-13
Generated
2026-06-16
AI Q&A
2025-12-13
EPSS Evaluated
2026-06-14
NVD
CVE-2025-14542
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
jfrog python-utcp 1.0.4
jfrog python-utcp 1.1.0
jfrog python-utcp 1.0.5
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-501 The product mixes trusted and untrusted data in the same data structure or structured message.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs when a client fetches a tool's JSON specification, called a Manual, from a remote Manual Endpoint. Initially, the provider may serve a benign manual to gain the client's trust, but later the provider can change the manual to a malicious version to exploit the client.

Impact Analysis

The vulnerability can lead to high impact on confidentiality, integrity, and availability of the client system, as a malicious manual can exploit the client after trust is established, potentially causing significant harm.

Detection Guidance

Detection involves monitoring for unexpected fetching and execution of remote manuals, especially those that include CLI call templates. You can check for network requests fetching JSON manuals from untrusted endpoints and inspect these manuals for suspicious 'call_template_type' fields set to 'cli' or other unexpected commands. On a system with python-utcp installed, you can monitor processes for unexpected CLI executions triggered by the UTCP client. Example commands include: 1) Using network monitoring tools (e.g., tcpdump or Wireshark) to capture HTTP requests fetching manuals. 2) Using grep or jq to inspect fetched manual JSON files for 'call_template_type' set to 'cli'. 3) On Windows, use PowerShell to check running processes for unexpected commands like 'calc.exe'. 4) On Unix/Linux, use commands like 'ps aux | grep python' to detect suspicious python-utcp client activity. Since the vulnerability involves dynamic manual fetching and execution, combining network and process monitoring is recommended. [2]

Mitigation Strategies

Immediate mitigation steps include: 1) Upgrade the python-utcp SDK to version 1.1.0 or later, which introduces security enhancements such as protocol restrictions preventing dangerous protocol escalation. 2) If upgrading is not immediately possible, disable or uninstall the 'utcp-cli' package to prevent execution of arbitrary OS commands via CLI call templates. 3) Restrict or monitor network access to Manual Endpoints to ensure only trusted manuals are fetched. 4) Implement strict validation of manuals before allowing their execution, especially checking for unexpected 'cli' call templates. 5) Apply network-level controls to block or alert on suspicious manual fetches or command executions. These steps reduce the risk of remote code execution and SSRF attacks stemming from malicious manual modifications. [1, 2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-14542. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart