CVE-2025-63800

Опубликовано: 18 нояб. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

The password change endpoint in Open Source Point of Sale 3.4.1 allows users to set their account password to an empty string due to missing server-side validation. When an authenticated user omits or leaves the password and repeat_password parameters empty in the password change request, the backend still returns a successful response and sets the password to an empty string. This effectively disables authentication and may allow unauthorized access to user or administrative accounts.

Ссылки

https://github.com/omkaryepre/vulnerability-research/tree/main/CVE-2025-63800
Exploit
Third Party Advisory
https://github.com/opensourcepos/opensourcepos
Product
https://opensourcepos.org/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opensourcepos:open_source_point_of_sale:3.4.1:*:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00278

Низкий

7.5 High

CVSS3

Дефекты

CWE-521

Связанные уязвимости

GHSA-q9j2-x62q-rv7w

CVSS3: 7.5

github

3 месяца назад

The password change endpoint in Open Source Point of Sale 3.4.1 allows users to set their account password to an empty string due to missing server-side validation. When an authenticated user omits or leaves the `password` and `repeat_password` parameters empty in the password change request, the backend still returns a successful response and sets the password to an empty string. This effectively disables authentication and may allow unauthorized access to user or administrative accounts.

EPSS

Процентиль: 51%

0.00278

Низкий

7.5 High

CVSS3

Дефекты

CWE-521