Cyber Resilience

CVE-2025-27510

Critical

Published: 04 March 2025

Published
04 March 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v4 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0632 91.2th percentile
Risk Priority 22 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-27510 is a critical-severity Inclusion of Functionality from Untrusted Control Sphere (CWE-829) vulnerability. Its CVSS base score is 9.3 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Compromise Software Dependencies and Development Tools (T1195.001); ranked in the top 8.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 CM-14 (Signed Components) and SR-11 (Component Authenticity).

Deeper analysis

conda-forge-metadata provides programmatic access to conda-forge metadata and declares an optional dependency on conda-oci-mirror in its pyproject.toml. That package name was never registered on PyPI, creating a dependency confusion condition (CWE-829) that can lead to remote code execution if the name is later claimed.

An unauthenticated attacker who registers and publishes a malicious conda-oci-mirror package can therefore supply code that executes when conda-forge-metadata or any downstream project resolves the optional dependency. The attack requires no user interaction and affects any environment that installs the package with dependency resolution enabled.

The GitHub Security Advisory GHSA-vwfh-m3q7-9jpw and the linked repository files document the vulnerable declaration and serve as the primary sources for remediation guidance.

EPSS for CVE-2025-27510 rose from lower values to a peak of 0.1195 on 2026-04-16 before receding to the current 0.0632, indicating a measurable increase in exploitation interest after disclosure.

EU & UK References

Vulnerability details

conda-forge-metadata provides programatic access to conda-forge's metadata. conda-forge-metadata uses an optional dependency - "conda-oci-mirror" which was neither present on the PyPi repository nor registered by any entity. If conda-oci-mirror is taken over by a threat actor, it can result in…

more

remote code execution.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1195.001 Compromise Software Dependencies and Development Tools Initial Access
Adversaries may manipulate software dependencies and development tools prior to receipt by a final consumer for the purpose of data or system compromise.
Why these techniques?

The CVE describes inclusion of an unclaimed optional dependency (CWE-829) that an attacker can register on PyPI with malicious code, directly enabling compromise of software dependencies for RCE.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-27607Shared CWE-829
CVE-2026-43569Shared CWE-829
CVE-2026-22865Shared CWE-829
CVE-2025-15612Shared CWE-829
CVE-2026-26974Shared CWE-829
CVE-2026-28372Shared CWE-829
CVE-2026-4295Shared CWE-829
CVE-2026-40959Shared CWE-829
CVE-2025-70046Shared CWE-829
CVE-2026-32920Shared CWE-829

Affected Assets

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires verification of component authenticity prior to use, directly preventing execution of malicious code from threat actors hijacking unclaimed package names like conda-oci-mirror.

prevent

Mandates digital signatures and enforcement for software components before installation and execution, mitigating RCE risks from untrusted optional dependencies.

prevent

Requires proof of provenance for components, ensuring unclaimed and unproven packages like conda-oci-mirror are not trusted or incorporated.

References