What is CVE-2025-62373?

A critical vulnerability in Pipecat allows remote code execution through unsafe deserialization. Organizations using affected versions must prioritize patching to mitigate risks associated with this flaw.

What is the severity of CVE-2025-62373?

CVE-2025-62373 has a severity rating of CRITICAL with a CVSS base score of 9.8.

CVE-2025-62373 | Critical Vulnerability in Pipecat

The CVE-2025-62373 vulnerability affects Pipecat, an open-source Python framework designed for creating real-time voice and multimodal conversational agents. This critical vulnerability impacts versions 0.0.41 through 0.0.93 of Pipecat, specifically within the `LivekitFrameSerializer`, a deprecated and undocumented frame serializer class intended for LiveKit integration. The vulnerability arises from the `deserialize()` method, which utilizes Python's `pickle.loads()` on data received from WebSocket clients without any validation or sanitization.

An attacker can leverage this vulnerability by sending a crafted pickle payload from a malicious WebSocket client, leading to arbitrary code execution on the Pipecat server. If the server is configured to use `LivekitFrameSerializer` and is exposed on an external interface, the risk of remote code execution (RCE) escalates significantly. The vulnerability resides within the code in `src/pipecat/serializers/livekit.py`, where untrusted data is directly passed into `pickle.loads()` for deserialization.

To mitigate this vulnerability, it is essential for users of Pipecat to upgrade to version 0.0.94 or later, which includes a fix. Additionally, it is recommended to cease the use of the vulnerable `LivekitFrameSerializer` and consider using alternative secure methods provided by the framework, such as `LiveKitTransport`. Following secure coding practices is critical, which include not trusting client-supplied data and avoiding the use of Python pickle for data deserialization in network-facing components.

Due to the potential for significant impact, organizations should prioritize patching immediately.

Vulnerability Details

The vulnerability in Pipecat has been classified as critical with a CVSS score of 9.8. The attack vector is network-based with low complexity and does not require any privileges or user interaction. The vulnerability is associated with CWE-502, indicating an issue related to deserialization of untrusted data.

Technical Analysis

The root cause of this vulnerability is the use of Python's pickle module for deserialization without validating or sanitizing the data. The attack vector is the network, allowing attackers to exploit the flaw remotely. The complexity of the attack is low, as it does not require any authentication or user interaction. The confidentiality, integrity, and availability impacts are all rated as high, indicating that successful exploitation can lead to significant risks for organizations.

Risk & Impact Analysis

Organizations utilizing Pipecat should be aware of the high risks associated with this vulnerability. The potential for remote code execution can lead to unauthorized access, data breaches, and various other malicious activities. Given the critical nature of this vulnerability and its high CVSS score, organizations should address this issue in their priority patch cycle.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The vulnerability affects all versions of Pipecat from 0.0.41 up to, but not including, 0.0.94. Users are strongly advised to upgrade to version 0.0.94 or later, which contains the necessary security fixes.

Mitigation & Remediation

Organizations should prioritize upgrading to the latest version of Pipecat. In addition, users should cease the use of the vulnerable `LivekitFrameSerializer` and consider implementing alternative secure methods provided by the framework. Ensuring proper network security configurations is also essential. For further guidance on security practices, organizations can refer to our application security assessment resources.

Detection Guidance

Monitoring for unusual WebSocket traffic and unexpected deserialization activity is recommended. Organizations should also review logs for any signs of exploitation attempts and ensure that security measures are in place to mitigate unauthorized access.

AppSecure Threat Intelligence Insight

The critical nature of this vulnerability highlights the importance of secure coding practices in the development of network-facing applications. Organizations should maintain an awareness of vulnerability trends and consider implementing regular security assessments. For further insights on vulnerability management and security best practices, refer to our articles on vulnerability management programs and penetration testing methodology for proactive security measures.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-62373: Critical Vulnerability in Pipecat