High severity7.3GHSA Advisory· Published Sep 25, 2025· Updated Apr 29, 2026
CVE-2025-10951
CVE-2025-10951
Description
A vulnerability was identified in geyang ml-logger up to acf255bade5be6ad88d90735c8367b28cbe3a743. Affected by this vulnerability is the function log_handler of the file ml_logger/server.py. Such manipulation of the argument File leads to path traversal. It is possible to launch the attack remotely. The exploit is publicly available and might be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ml-loggerPyPI | <= 0.10.36 | — |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- github.com/advisories/GHSA-8x9j-2p8r-7xc6ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-10951ghsaADVISORY
- github.com/geyang/ml-logger/issues/73nvdWEB
- vuldb.comnvdWEB
- vuldb.comnvdWEB
- vuldb.comnvdWEB
News mentions
0No linked articles in our index yet.