Skip to content

Instantly share code, notes, and snippets.

@k1ng0fic3

k1ng0fic3/CVE-2025-63721.md

Last active December 2, 2025 06:19
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save k1ng0fic3/e8c8c9353fff8fa95e2c2952587e9266 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save k1ng0fic3/e8c8c9353fff8fa95e2c2952587e9266 to your computer and use it in GitHub Desktop.
Download ZIP
CVE-2025-63721 details
Raw
CVE-2025-63721.md

CVE ID

CVE-2025-63721

PRODUCT

HummerRisk

VERSION

<=1.5.0

DESCRIPTION

HummerRisk is an opensource cloud-native security platform.

PROBLEM TYPE

Insecure Deserialization.

HummerRisk thru 1.5.0 is using a vulnerable Snakeyaml component allowing attackers to achieve RCE and take over the server.

Snakeyaml 1.33 is vulnerable.

Install and start hummerrisk.

Login as admin. {"username":"admin","password":"hummer","authenticate":"LOCAL"}

Create a normal user as the attacker.

Login as "hacker".

Read API-DOC.

Write files successfully! The payload is shown in the figure.

Overwrite /etc/crontab can lead to RCE.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment