CVE-2025-52287
Published: 22 August 2025
Summary
CVE-2025-52287 is a high-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Elite Project Elite. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 46.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2025-52287 is a deserialization vulnerability (CWE-502) in the OperaMasks SDK ELite Script Engine version 0.5.0. Published on 2025-08-22, it carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H), reflecting its high severity due to the potential for significant impact across confidentiality, integrity, and availability.
Unauthenticated remote attackers can exploit this vulnerability over the network with low attack complexity, though it requires user interaction. Successful exploitation enables high-impact outcomes, including unauthorized access to sensitive data, modification of system resources, and disruption of services.
Researcher-provided references, including a GitHub gist and a related post by ChangeYourWay, offer further technical details on the issue. No official advisories or patches are specified in the available information.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-25619
Vulnerability details
OperaMasks SDK ELite Script Engine v0.5.0 was discovered to contain a deserialization vulnerability.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Deserialization flaw enables remote code execution via malicious input to the script engine; UI:R and network vector map to client-side exploitation (T1203) or public app exploitation (T1190).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly addresses the deserialization vulnerability in OperaMasks SDK ELite Script Engine v0.5.0 by requiring timely identification, reporting, and remediation of the flaw through patching or replacement.
Prevents exploitation of the deserialization vulnerability by validating and sanitizing untrusted inputs prior to deserialization processing.
Mitigates deserialization attacks by verifying the integrity of software components and serialized data to detect unauthorized modifications or tampering.