exploitDog

CVE-2025-32367

Опубликовано: 11 апр. 2025

Источник: nvd

CVSS3: 8.6

EPSS Низкий

Описание

The Oz Forensics face recognition application before 4.0.8 late 2023 allows PII retrieval via /statistic/list Insecure Direct Object Reference. NOTE: the number 4.0.8 was used for both the unpatched and patched versions.

Ссылки

EPSS

Процентиль: 52%

0.00295

Низкий

8.6 High

CVSS3

Дефекты

CWE-425

Связанные уязвимости

GHSA-wv3j-j89q-mvh8

CVSS3: 8.6

github

10 месяцев назад

The Oz Forensics face recognition application before 4.0.8 late 2023 allows PII retrieval via /statistic/list Insecure Direct Object Reference. NOTE: the number 4.0.8 was used for both the unpatched and patched versions.

EPSS

Процентиль: 52%

0.00295

Низкий

8.6 High

CVSS3

Дефекты

CWE-425