exploitDog

GHSA-35qg-4gg3-p395

Опубликовано: 28 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

An issue was discovered in BESSystem BES Application Server thru 9.5.x allowing unauthorized attackers to gain sensitive information via the "pre-resource" option in bes-web.xml.

An issue was discovered in BESSystem BES Application Server thru 9.5.x allowing unauthorized attackers to gain sensitive information via the "pre-resource" option in bes-web.xml.

Ссылки

EPSS

Процентиль: 14%

0.00046

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2025-60805

CVSS3: 7.5

nvd

3 месяца назад

An issue was discovered in BESSystem BES Application Server thru 9.5.x allowing unauthorized attackers to gain sensitive information via the "pre-resource" option in bes-web.xml.

EPSS

Процентиль: 14%

0.00046

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200