CVE-2025-61584 | serverless-dns up to 0.1.30 command injection

September 30, 2025 Yanac

A vulnerability described as critical has been identified in serverless-dns up to 0.1.30. Affected by this issue is some unknown functionality. Executing manipulation can lead to command injection.

This vulnerability appears as CVE-2025-61584. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More

CVE-2025-59933 | libvips up to 8.17.1 PDF vips_operation_block_set buffer over-read (GHSA-q8px-4w5q-c2r4)
CVE-2025-43813 | Liferay Portal/DXP ComboServlet path traversal