CVE-2025-68271 | OpenC3 cosmos up to 6.10.1 JSON-RPC API eval eval injection

A vulnerability was found in OpenC3 cosmos up to 6.10.1. It has been rated as critical. Impacted is the function eval of the component JSON-RPC API. Performing a manipulation results in improper neutralization of directives in dynamically evaluated code.

This vulnerability is identified as CVE-2025-68271. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More