Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-3ee4-zba6-gkc1
Vulnerability ID VCID-3ee4-zba6-gkc1
Aliases CVE-2025-27520
GHSA-33xw-247w-6hmc
Summary BentoML Allows Remote Code Execution (RCE) via Insecure Deserialization A Remote Code Execution (RCE) vulnerability caused by insecure deserialization has been identified in the latest version(v1.4.2) of BentoML. It allows any unauthenticated user to execute arbitrary code on the server.
Status Published
Exploitability 2.0
Weighted Severity 9.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-502 Deserialization of Untrusted Data
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
epss 0.75759 https://api.first.org/data/v1/epss?cve=CVE-2025-27520
cvssv3.1 9.8 https://github.com/bentoml/BentoML
generic_textual CRITICAL https://github.com/bentoml/BentoML
cvssv3.1 9.8 https://github.com/bentoml/BentoML/commit/b35f4f4fcc53a8c3fe8ed9c18a013fe0a728e194
generic_textual CRITICAL https://github.com/bentoml/BentoML/commit/b35f4f4fcc53a8c3fe8ed9c18a013fe0a728e194
ssvc Track* https://github.com/bentoml/BentoML/commit/b35f4f4fcc53a8c3fe8ed9c18a013fe0a728e194
cvssv3.1 9.8 https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc
generic_textual CRITICAL https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc
ssvc Track* https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc
cvssv3.1 9.8 https://nvd.nist.gov/vuln/detail/CVE-2025-27520
generic_textual CRITICAL https://nvd.nist.gov/vuln/detail/CVE-2025-27520
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2025-27520
https://github.com/bentoml/BentoML
https://github.com/bentoml/BentoML/commit/b35f4f4fcc53a8c3fe8ed9c18a013fe0a728e194
CVE-2025-27520 https://nvd.nist.gov/vuln/detail/CVE-2025-27520
GHSA-33xw-247w-6hmc https://github.com/advisories/GHSA-33xw-247w-6hmc
GHSA-33xw-247w-6hmc https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc
Data source Metasploit
Description A Remote Code Execution (RCE) vulnerability caused by insecure deserialization has been identified in v1.4.2 of BentoML. It allows any unauthenticated user to execute arbitrary code on the server.
Note 
Stability:
  - crash-safe
SideEffects:
  - ioc-in-logs
Reliability:
  - repeatable-session
Ransomware campaign use Unknown
Source publication date April 4, 2025
Platform Linux,Python,Unix
Source URL https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/linux/http/bentoml_rce_cve_2025_27520.rb
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://github.com/bentoml/BentoML
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://github.com/bentoml/BentoML/commit/b35f4f4fcc53a8c3fe8ed9c18a013fe0a728e194
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-04T14:51:28Z/ Found at https://github.com/bentoml/BentoML/commit/b35f4f4fcc53a8c3fe8ed9c18a013fe0a728e194
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-04T14:51:28Z/ Found at https://github.com/bentoml/BentoML/security/advisories/GHSA-33xw-247w-6hmc
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2025-27520
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.98926
EPSS Score 0.75759
Published At June 5, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T16:23:44.847829+00:00 GitLab Importer Import https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/bentoml/CVE-2025-27520.yml 38.6.0