Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-63690

In pig-mesh Pig versions 3.8.2 and below, when setting up scheduled tasks in the Quartz management function under the system management module, it is possible to execute any Java class with a parameterless constructor and its methods with parameter type String through reflection. At this time, the eval method in Tomcat's built-in class jakarta.el.ELProcessor can be used to execute commands, leading to a remote code execution vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.8%
CVSS Severity
CVSS v3 Score 9.1
Products affected by CVE-2025-63690
  • Pig4cloud » Pig » Version: 1.1.6
    cpe:2.3:a:pig4cloud:pig:1.1.6
  • Pig4cloud » Pig » Version: 1.3.2
    cpe:2.3:a:pig4cloud:pig:1.3.2
  • Pig4cloud » Pig » Version: 3.4.3
    cpe:2.3:a:pig4cloud:pig:3.4.3
  • Pig4cloud » Pig » Version: 3.5.2
    cpe:2.3:a:pig4cloud:pig:3.5.2
  • Pig4cloud » Pig » Version: 3.5.3
    cpe:2.3:a:pig4cloud:pig:3.5.3
  • Pig4cloud » Pig » Version: 3.6.0
    cpe:2.3:a:pig4cloud:pig:3.6.0
  • Pig4cloud » Pig » Version: 3.6.1
    cpe:2.3:a:pig4cloud:pig:3.6.1
  • Pig4cloud » Pig » Version: 3.6.2
    cpe:2.3:a:pig4cloud:pig:3.6.2
  • Pig4cloud » Pig » Version: 3.6.3
    cpe:2.3:a:pig4cloud:pig:3.6.3
  • Pig4cloud » Pig » Version: 3.6.4
    cpe:2.3:a:pig4cloud:pig:3.6.4
  • Pig4cloud » Pig » Version: 3.6.5
    cpe:2.3:a:pig4cloud:pig:3.6.5
  • Pig4cloud » Pig » Version: 3.6.6
    cpe:2.3:a:pig4cloud:pig:3.6.6
  • Pig4cloud » Pig » Version: 3.6.7
    cpe:2.3:a:pig4cloud:pig:3.6.7
  • Pig4cloud » Pig » Version: 3.7.1
    cpe:2.3:a:pig4cloud:pig:3.7.1
  • Pig4cloud » Pig » Version: 3.7.2
    cpe:2.3:a:pig4cloud:pig:3.7.2
  • Pig4cloud » Pig » Version: 3.7.5
    cpe:2.3:a:pig4cloud:pig:3.7.5
  • Pig4cloud » Pig » Version: 3.7.6
    cpe:2.3:a:pig4cloud:pig:3.7.6
  • Pig4cloud » Pig » Version: 3.8.0
    cpe:2.3:a:pig4cloud:pig:3.8.0
  • Pig4cloud » Pig » Version: 3.8.1
    cpe:2.3:a:pig4cloud:pig:3.8.1
  • Pig4cloud » Pig » Version: 3.8.2
    cpe:2.3:a:pig4cloud:pig:3.8.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved