VYPR
Critical severityOSV Advisory· Published May 14, 2025· Updated Apr 15, 2026

CVE-2025-47292

CVE-2025-47292

Description

Cap Collectif is an online decision making platform that integrates several tools. Before commit 812f2a7d271b76deab1175bdaf2be0b8102dd198, the DebateAlternateArgumentsResolver deserializes a Cursor, allowing any classes and which can be controlled by unauthenticated user. Exploitation of this vulnerability can lead to Remote Code Execution. The vulnerability is fixed in commit 812f2a7d271b76deab1175bdaf2be0b8102dd198.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: < f2a7d271b76deab1175bdaf2be0b8102dd198 (git commit)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.