Lucene search
+L

8 matches found

redhatcve
redhatcve
added 2025/12/15 1:25 p.m.4 views

CVE-2025-14660

A flaw has been found in DecoCMS Mesh up to 1.0.0-alpha.31. Affected by this vulnerability is the function createTool of the file packages/sdk/src/mcp/teams/api.ts of the component Workspace Domain Handler. This manipulation of the argument domain causes improper access controls. The attack can b...

6.3CVSS6.2AI score0.00281EPSS
Exploits0References1
euvd
euvd
added 2025/12/14 3:30 p.m.5 views

EUVD-2025-203298

A flaw has been found in DecoCMS Mesh up to 1.0.0-alpha.31. Affected by this vulnerability is the function createTool of the file packages/sdk/src/mcp/teams/api.ts of the component Workspace Domain Handler. This manipulation of the argument domain causes improper access controls. The attack can b...

6.3CVSS5.8AI score0.00281EPSS
Exploits0References9
nvd
nvd
added 2025/12/14 1:15 p.m.7 views

CVE-2025-14660

A flaw has been found in DecoCMS Mesh up to 1.0.0-alpha.31. Affected by this vulnerability is the function createTool of the file packages/sdk/src/mcp/teams/api.ts of the component Workspace Domain Handler. This manipulation of the argument domain causes improper access controls. The attack can b...

6.3CVSS0.00281EPSS
Exploits0References8
cvelist
cvelist
added 2025/12/14 12:32 p.m.22 views

CVE-2025-14660 DecoCMS Mesh Workspace Domain api.ts createTool access control

A flaw has been found in DecoCMS Mesh up to 1.0.0-alpha.31. Affected by this vulnerability is the function createTool of the file packages/sdk/src/mcp/teams/api.ts of the component Workspace Domain Handler. This manipulation of the argument domain causes improper access controls. The attack can b...

6.3CVSS0.00281EPSS
Exploits0References8
vulnrichment
vulnrichment
added 2025/12/14 12:32 p.m.2 views

CVE-2025-14660 DecoCMS Mesh Workspace Domain api.ts createTool access control

A flaw has been found in DecoCMS Mesh up to 1.0.0-alpha.31. Affected by this vulnerability is the function createTool of the file packages/sdk/src/mcp/teams/api.ts of the component Workspace Domain Handler. This manipulation of the argument domain causes improper access controls. The attack can b...

6.3CVSS6AI score0.00281EPSS
Exploits0References8
osv
osv
added 2025/12/14 12:32 p.m.6 views

CVE-2025-14660 DecoCMS Mesh Workspace Domain api.ts createTool access control

A flaw has been found in DecoCMS Mesh up to 1.0.0-alpha.31. Affected by this vulnerability is the function createTool of the file packages/sdk/src/mcp/teams/api.ts of the component Workspace Domain Handler. This manipulation of the argument domain causes improper access controls. The attack can b...

6.3CVSS5.2AI score0.00281EPSS
Exploits0References10
cve
cve
added 2025/12/14 12:32 p.m.11 views

CVE-2025-14660

DecoCMS Mesh vulnerability CVE-2025-14660 affects the Workspace Domain Handler component: function createTool in packages/sdk/src/mcp/teams/api.ts allows manipulation of the domain argument, leading to improper access controls. The flaw can be exploited remotely; attack complexity is high, and th...

6.3CVSS5.3AI score0.00281EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2025/12/14 12:0 a.m.8 views

PT-2025-51162

A flaw has been found in DecoCMS Mesh up to 1.0.0-alpha.31. Affected by this vulnerability is the function createTool of the file packages/sdk/src/mcp/teams/api.ts of the component Workspace Domain Handler. This manipulation of the argument domain causes improper access controls. The attack can b...

6.3CVSS6.2AI score0.00281EPSS
Exploits0References9
Rows per page
Query Builder