25 matches found
CVE-2018-25251
creationtimestamp| type| source ---|---|--- 2026-04-04 15:35:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miokqunz2y24...
CVE-2019-25251
creationtimestamp| type| source ---|---|--- 2026-01-05 16:34:13+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115843455585115998...
CVE-2019-25251
CVE-2019-25251 affects Teradek VidiU Pro 3.0.3. The vulnerability is a server-side request forgery in the management interface that allows manipulation of the GET parameters url and xml_url, enabling attackers to bypass firewalls, perform network enumeration, and potentially trigger external HTTP...
CVE-2025-25251
An Incorrect Authorization vulnerability CWE-863 in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages...
CVE-2025-25251
An Incorrect Authorization vulnerability CWE-863 in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages...
CVE-2025-25251
An Incorrect Authorization vulnerability CWE-863 in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages...
CVE-2025-25251
An Incorrect Authorization vulnerability CWE-863 in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages...
CVE-2025-25251
Fortinet FortiClient MAC is affected by CVE-2025-25251 (Incorrect Authorization, CWE-863) across multiple release lines (7.0.0–7.0.14, 7.2.0–7.2.8, 7.4.0–7.4.2). The vulnerability enables local privilege escalation via crafted XPC messages. Remediation per PT-2025-23068 advises updating FortiClie...
CVE-2025-25251
An Incorrect Authorization vulnerability CWE-863 in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14 may allow a local attacker to escalate privileges via crafted XPC messages...
CVE-2020-25251
An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Client-side authentication is used for critical functions such as adding users or retrieving sensitive information...
Fortinet FortiClient Local privilege escalation in XPC services (FG-IR-25-016) (macOS)
The version of FortiClient installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-25-016 advisory. - An Incorrect Authorization vulnerability CWE-863 in FortiClient Mac may allow a local attacker to escalate privileges via...
CVE-2024-25251
code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control...
CVE-2024-25251
code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control...
CVE-2024-25251
code-projects Agro-School Management System 1.0 is suffers from Incorrect Access Control...
CVE-2024-25251
CVE-2024-25251 affects code-projects Agro-School Management System 1.0 with an Incorrect Access Control flaw. Connected sources consistently reference the product and version, describing improper access control as the issue. The CVSS v3.1 vector indicates high impact to confidentiality, integrity...
CVE-2022-25251
creationtimestamp| type| source ---|---|--- 2022-03-16 17:26:51+00:00| seen| https://t.me/cibsecurity/39063...
CVE-2022-25251
When connecting to a certain port Axeda agent All versions and Axeda Desktop Server for Windows All versions may allow an attacker to send certain XML messages to a specific port without proper authentication. Successful exploitation of this vulnerability could allow a remote unauthenticated...
CVE-2022-25251
When connecting to a certain port Axeda agent All versions and Axeda Desktop Server for Windows All versions may allow an attacker to send certain XML messages to a specific port without proper authentication. Successful exploitation of this vulnerability could allow a remote unauthenticated...
CVE-2022-25251 PTC Axeda agent and Axeda Desktop Server Missing Authentication For Critical Function
When connecting to a certain port Axeda agent All versions and Axeda Desktop Server for Windows All versions may allow an attacker to send certain XML messages to a specific port without proper authentication. Successful exploitation of this vulnerability could allow a remote unauthenticated...
CVE-2022-25251
CVE-2022-25251 affects the PTC Axeda agent and Axeda Desktop Server for Windows (all versions). The flaw is Missing Authentication for a Critical Function (CWE-306) where an unauthenticated remote attacker can send certain XML messages to a port and read/modify the product’s configuration. The IC...