CVE-2025-57622 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An issue in Step-Video-T2V allows a remote attacker to execute arbitrary code via the /vae-api , /caption-api , feature = pickle.loads(request.get_data()) compo…
Critical CVSS: 9.8

CVE-2025-57622

An issue in Step-Video-T2V allows a remote attacker to execute arbitrary code via the /vae-api , /caption-api , feature = pickle.loads(request.get_data()) component
Vendor
-
Product
-
CWE
CWE-502
Yayın Tarihi
2026-03-03 15:16:15
Güncelleme
2026-03-12 16:16:09
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-502 CRITICAL 2026

Referanslar

https://github.com/stepfun-ai/Step-Video-T2V/blob/main/api/call_remote_server.py https://github.com/stepfun-ai/Step-Video-T2V/issues/65