exploitDog

CVE-2025-25951

Опубликовано: 03 мар. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

An information disclosure vulnerability in the component /rest/cb/executeBasicSearch of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows attackers to access sensitive user information.

Ссылки

https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2024-89638
Broken Link
Not Applicable
https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2025-25951
Third Party Advisory
https://github.com/el-viper/cve-research/tree/main/CVEs/CVE-2025-25951

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:serosoft:academia_student_information_system:eagler-1.0.118:*:*:*:*:*:*:*

EPSS

Процентиль: 35%

0.00145

Низкий

7.5 High

CVSS3

Дефекты

CWE-200

Связанные уязвимости

GHSA-22cf-67wm-xj29

CVSS3: 7.5

github

11 месяцев назад

An information disclosure vulnerability in the component /rest/cb/executeBasicSearch of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows attackers to access sensitive user information.

EPSS

Процентиль: 35%

0.00145

Низкий

7.5 High

CVSS3

Дефекты

CWE-200