CVE-2025-11157
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
A high-severity remote code execution vulnerability exists in feast-dev/feast version 0.53.0, specifically in the Kubernetes materializer job located at feast/sdk/python/feast/infra/compute_engines/kubernetes/main.py. The vulnerability arises from the use of yaml.load(..., Loader=yaml.Loader) to deserialize /var/feast/feature_store.yaml and /var/feast/materialization_config.yaml. This method allows for the instantiation of arbitrary Python objects, enabling an attacker with the ability to modify these YAML files to execute OS commands on the worker pod. This vulnerability can be exploited before the configuration is validated, potentially leading to cluster takeover, data poisoning, and supply-chain sabotage.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| feast-dev | feast-dev/feast | unspecified < 0.54.0 | affected |
Weaknesses
- CWE-502: CWE-502 Deserialization of Untrusted Data
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: total
feast: Feast: Remote Code Execution via insecure YAML deserialization
Additional References
- https://access.redhat.com/security/cve/CVE-2025-11157
- https://bugzilla.redhat.com/show_bug.cgi?id=2426574
- https://security.access.redhat.com/data/csaf/v2/vex/2025/cve-2025-11157.json
- https://access.redhat.com/errata/RHSA-2026:10184
References
- https://huntr.com/bounties/46d4d585-b968-4a76-80ce-872bc5525564
- https://github.com/feast-dev/feast/commit/b2e37ff37953b68ae833f6874ab5bc510a4ca5fb
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.