CVE-2026-1194

Опубликовано: 20 янв. 2026

Источник: nvd

CVSS3: 5.3

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.

Ссылки

https://github.com/SourByte05/MineAdmin-Vulnerability/issues/5
Exploit
Issue Tracking
Mitigation
Third Party Advisory
https://vuldb.com/?ctiid.341779
Permissions Required
VDB Entry
https://vuldb.com/?id.341779
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.734271
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mineadmin:mineadmin:1.0:*:*:*:*:*:*:*

cpe:2.3:a:mineadmin:mineadmin:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 10%

0.00036

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

NVD-CWE-noinfo

Связанные уязвимости

GHSA-7f7m-83r3-p644

CVSS3: 5.3

github

18 дней назад

MineAdmin May Expose Sensitive Information to an Unauthorized Actor

EPSS

Процентиль: 10%

0.00036

Низкий

5.3 Medium

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

NVD-CWE-noinfo