exploitDog

GHSA-79mm-82ph-f99w

Опубликовано: 28 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 6.9

CVSS3: 8.8

Описание

An issue was discovered in Logpoint before 7.7.0. An improperly configured access control policy exposes sensitive Logpoint internal service (Redis) information to li-admin users. This can lead to privilege escalation.

An issue was discovered in Logpoint before 7.7.0. An improperly configured access control policy exposes sensitive Logpoint internal service (Redis) information to li-admin users. This can lead to privilege escalation.

Ссылки

EPSS

Процентиль: 18%

0.00056

Низкий

6.9 Medium

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-66360

CVSS3: 8.8

nvd

2 месяца назад

An issue was discovered in Logpoint before 7.7.0. An improperly configured access control policy exposes sensitive Logpoint internal service (Redis) information to li-admin users. This can lead to privilege escalation.

EPSS

Процентиль: 18%

0.00056

Низкий

6.9 Medium

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-863