CVE-2025-62373 -- CVSS 9.8 Vulnerability Briefing

CVE-2025-62373 | CVSS 9.8 (Critical) | Exploit: No known exploit

What Is It

CVE-2025-62373 is a critical-severity vulnerability in the Pipecat open-source Python framework, specifically within the LivekitFrameSerializer component, affecting versions 0.0.41 through 0.0.93 of the Pipecat library used to build real-time voice and multimodal conversational agents.

Technical Detail

The flaw resides in the LivekitFrameSerializer, an optional serialization component within Pipecat's LiveKit integration layer. Based on the CVSS score of 9.8 and the nature of serialization vulnerabilities in Python frameworks, the issue likely involves unsafe deserialization or improper input validation that allows an attacker to supply maliciously crafted data through the serialization interface, potentially resulting in remote code execution or significant unauthorized access. The full technical description is truncated in available data, but the critical severity rating indicates the vulnerability is exploitable remotely without authentication and carries high impact across confidentiality, integrity, and availability.

Exploitation Status

No known exploit exists for this vulnerability at this time. It is not listed in CISA's Known Exploited Vulnerabilities catalog as of April 30, 2026. There is no confirmed public proof-of-concept code or evidence of active exploitation in the wild. However, the critical CVSS score and the nature of the affected component warrant prompt remediation regardless of current exploitation status.

Who Is Targeting This

No specific threat actor attribution at this time. No campaigns, targeted sectors, or adversary groups have been associated with this vulnerability in available intelligence sources.

What To Do

Organizations using Pipecat should upgrade to a version beyond 0.0.93 immediately, as all releases from 0.0.41 through 0.0.93 are confirmed affected. If an immediate upgrade is not feasible, deployments should avoid using the LivekitFrameSerializer component and restrict network access to any services exposing Pipecat's LiveKit integration to untrusted input sources. Defenders should monitor for anomalous deserialization activity or unexpected process spawning in environments running Pipecat-based agents. Given the critical score and remote exploitability, this should be treated as a high-priority patch even in the absence of confirmed active exploitation.