Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/04/29 9:13 p.m.20 views

CVE-2025-3985

A vulnerability was found in Apereo CAS 5.2.6. It has been classified as problematic. This affects the function ResponseEntity of the file cas-5.2.6\webapp-mgmt\cas-management-webapp-support\src\main\java\org\apereo\cas\mgmt\services\web\ManageRegisteredServicesMultiActionController.java. The...

5.1CVSS6.8AI score0.00522EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/04/27 9:34 p.m.7 views

org.apereo.cas:cas-management-webapp (>=5.0.0 <=5.0.10) potentially affected by CVE-2025-3985 via org.apereo.cas:cas-management-webapp-support (>=5.0.0 <=5.0.9)

org.apereo.cas:cas-management-webapp-support MAVEN version =5.0.0, =5.0.0, =5.0.10 Source cves: CVE-2025-3985 Source advisory: OSV:GHSA-8RX4-FXQ5-VJ4V...

5.1CVSS5.8AI score0.00522EPSS
Exploits0
NVD
NVD
added 2025/04/27 9:15 p.m.18 views

CVE-2025-3985

A vulnerability was found in Apereo CAS 5.2.6. It has been classified as problematic. This affects the function ResponseEntity of the file cas-5.2.6\webapp-mgmt\cas-management-webapp-support\src\main\java\org\apereo\cas\mgmt\services\web\ManageRegisteredServicesMultiActionController.java. The...

5.1CVSS0.00522EPSS
Exploits0References4
Circl
Circl
added 2025/04/27 9:11 p.m.9 views

CVE-2025-3985

creationtimestamp| type| source ---|---|--- 2025-04-27 21:11:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13637 2025-04-27 21:40:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnt7owfytv2t 2025-04-28 01:31:07+00:00| seen|...

5.1CVSS3.8AI score0.00522EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/04/27 8:31 p.m.10 views

CVE-2025-3985 Apereo CAS ResponseEntity redos

A vulnerability was found in Apereo CAS 5.2.6. It has been classified as problematic. This affects the function ResponseEntity of the file cas-5.2.6\webapp-mgmt\cas-management-webapp-support\src\main\java\org\apereo\cas\mgmt\services\web\ManageRegisteredServicesMultiActionController.java. The...

5.1CVSS3.8AI score0.00522EPSS
Exploits0References4
CVE
CVE
added 2025/04/27 8:31 p.m.63 views

CVE-2025-3985

CVE-2025-3985 affects Apereo CAS 5.2.6. The vulnerability lies in the ManageRegisteredServicesMultiActionController.java handling of the Query argument, causing inefficient regular expression backtracking (ReDoS) and potential remote exploitation. Public disclosures exist, with no fixed version r...

5.1CVSS3.8AI score0.00522EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/04/27 8:31 p.m.4 views

CVE-2025-3985 Apereo CAS ResponseEntity redos

A vulnerability was found in Apereo CAS 5.2.6. It has been classified as problematic. This affects the function ResponseEntity of the file cas-5.2.6\webapp-mgmt\cas-management-webapp-support\src\main\java\org\apereo\cas\mgmt\services\web\ManageRegisteredServicesMultiActionController.java. The...

5.1CVSS4.8AI score0.00522EPSS
Exploits0References6
Rows per page
Query Builder