CVE-2025-32375: BentoML's runner server Vulnerable to Remote Code Execution (RCE) via Insecure Deserialization

April 9, 2025 (updated April 23, 2025)

There was an insecure deserialization in BentoML’s runner server. By setting specific headers and parameters in the POST request, it is possible to execute any unauthorized arbitrary code on the server, which will grant the attackers to have the initial access and information disclosure on the server.

References

github.com/advisories/GHSA-7v4r-c989-xh26
github.com/bentoml/BentoML
github.com/bentoml/BentoML/security/advisories/GHSA-7v4r-c989-xh26
github.com/pypa/advisory-database/tree/main/vulns/bentoml/PYSEC-2025-32.yaml
nvd.nist.gov/vuln/detail/CVE-2025-32375

Code Behaviors & Features

Detect and mitigate CVE-2025-32375 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →