CVE-2025-23045: High Vulnerability in CVAT Computer Vision Annotation Tool

CVE-2025-23045 is a high-severity vulnerability affecting the Computer Vision Annotation Tool (CVAT). This vulnerability allows an authenticated attacker to run arbitrary code in the context of the Nuclio function container, specifically targeting deployments running serverless functions of type tracker from the CVAT Git repository, such as TransT and SiamMask. Deployments with custom tracker functions may also be vulnerable depending on their state serialization methods.

The vulnerability has a CVSS score of 8.7, indicating a high level of risk. It primarily affects CVAT installations that utilize unsafe serialization libraries like pickle or jsonpickle. Organizations using affected versions should consider upgrading to CVAT 2.26.0 or later to mitigate this risk. If an upgrade is not feasible, it is recommended to disable any instances of the TransT or SiamMask functions.

The urgency for defenders is high, as the exploitability of this vulnerability is assessed to be significant. Organizations should prioritize patching immediately to prevent potential unauthorized access and code execution.

Failure to address this vulnerability could lead to severe impacts on confidentiality and integrity within CVAT deployments, making it critical for organizations to take prompt action.

Vulnerability Details

The Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. According to the official advisory, an attacker with an account on an affected CVAT instance is able to run arbitrary code in the context of the Nuclio function container. This vulnerability affects CVAT deployments that run any of the serverless functions of type tracker from the CVAT Git repository, namely TransT and SiamMask.

The CVSS score for this vulnerability is 8.7, categorized as high severity. This classification highlights the urgent need for organizations to address this issue, as the risks associated with potential exploitation are significant.

The vulnerability was published on January 28, 2025, and has been analyzed. The CWE classification related to this vulnerability is CWE-502, which signifies the potential for deserialization of untrusted data.

Technical Analysis

The root cause of this vulnerability lies in the handling of state serialization within CVAT deployments. Attackers may leverage this weakness to execute arbitrary code by manipulating how functions process serialized data.

The attack vector is network-based, with a low attack complexity. An attacker requires low privileges, as an account on the affected CVAT instance is sufficient to exploit this vulnerability. There is no user interaction required for successful exploitation.

The confidentiality impact is high, as attackers could gain access to sensitive information. Similarly, the integrity impact is also high, given the potential for unauthorized code execution, while the availability impact is considered low.

Risk & Impact Analysis

The real-world deployment risk associated with CVE-2025-23045 is substantial, particularly for organizations using CVAT in environments where sensitive data is handled. The ability for attackers to execute arbitrary code poses a severe threat, as it may compromise the entire application and data integrity.

This vulnerability highlights the importance of robust security practices, especially in systems utilizing serverless architectures. The potential blast radius is extensive, with the ability to affect not only the application itself but also the data it processes and any integrated systems.

Given the urgency of this vulnerability's CVSS score, organizations should prioritize the necessary updates in their patch cycle to mitigate risks effectively.

Affected Versions

The vulnerability affects CVAT versions from 1.1.0 to prior to 2.26.0. Organizations utilizing these versions should upgrade to CVAT 2.26.0 or later to mitigate the risks associated with this vulnerability.

Mitigation & Remediation

To mitigate the risks associated with CVE-2025-23045, organizations should upgrade to CVAT version 2.26.0 or later. If upgrading is not possible, it is advisable to disable any running instances of the TransT or SiamMask functions to prevent exploitation.

Additionally, organizations should implement robust security measures, including the use of safe serialization libraries and regular security assessments to identify potential vulnerabilities within their environments.

For more detailed guidance on security testing, organizations can refer to our penetration testing services.

Detection Guidance

Organizations should monitor their CVAT deployments for signs of unauthorized function execution and unusual serialization behavior. Specific log indicators include unexpected function invocations and access to sensitive resources.

Behavioral anomalies within the system, such as unexpected data modifications or unauthorized access attempts, should also be closely monitored.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2025-23045 lies in its potential to illustrate the risks associated with serverless architectures. As organizations increasingly adopt serverless computing, vulnerabilities like this can pose serious threats if not properly managed.

This vulnerability serves as a reminder for security teams to prioritize the assessment of serialization practices in their applications. Lessons learned from CVE-2025-23045 can help shape future security protocols and response strategies.

For organizations looking to enhance their security posture, it is crucial to engage in continuous security assessments, including regular reviews of their vulnerability management program and implementation of effective risk management strategies.

For further reading on security best practices, organizations should explore our insights on penetration testing methodology and effective security testing practices to mitigate vulnerabilities.