CNNVD-202512-210 Information

CNNVD ID

CNNVD-202512-210

Related CVE

CVE-2025-63872

• CNNVD Published: 2025-12-02

Description (Chinese)

DeepSeek是中国深度求索（DeepSeek）公司的一个大语言模型。 DeepSeek V3.2版本存在安全漏洞，该漏洞源于模型生成的SVG内容容易受到跨站脚本攻击。

Description (English)

DeepSeek is a large-language model of DeepSeek in China. There is a security gap in DeepSeek V3.2, which stems from the vulnerability of the model-generated SVG content to cross-site script attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

深度求索

Published

2025-12-02

Last Modified

2026-02-24

References

https://medium.com/@vinitkundu14/cve-2025-63872-svg-based-xss-in-deepseek-chat-v3-2-db4ebc1f1f28 https://access.redhat.com/security/cve/cve-2025-63872