4 matches found
CVE-2025-0364
BigAntSoft BigAnt Server, up to and including version 5.6.06, is vulnerable to unauthenticated remote code execution via account registration. An unauthenticated remote attacker can create an administrative user through the default exposed SaaS registration mechanism. Once an administrator, the...
CVE-2025-0364
creationtimestamp| type| source ---|---|--- 2025-02-04 17:56:54+00:00| seen| https://infosec.exchange/users/cve/statuses/113946906751178412 2025-02-04 18:15:54+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhenzxr6ut2f 2025-02-04 18:48:30+00:00| seen|...
CVE-2025-0364
CVE-2025-0364 (BigAntSoft BigAnt Server) affects BigAntSoft BigAnt Server up to and including version 5.6.06. The vulnerability allows unauthenticated remote code execution via the default SaaS account registration, where an attacker can create an administrative user and then upload/execute arbit...
CVE-2025-0364 BigAntSoft BigAnt Server Account Registration Bypass to File Upload RCE
BigAntSoft BigAnt Server, up to and including version 5.6.06, is vulnerable to unauthenticated remote code execution via account registration. An unauthenticated remote attacker can create an administrative user through the default exposed SaaS registration mechanism. Once an administrator, the...