Lucene search
+L

4 matches found

NVD
NVD
added 2025/03/03 5:15 p.m.16 views

CVE-2025-25302

Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middleware is setup incorrectly. All origins are reflected, which allows any website to send cross site requests to the rembg server and thus query any API. Even if authentication were to be enabled, allowcredentia...

8.7CVSS0.00179EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/03/03 4:40 p.m.10 views

CVE-2025-25302 Rembg CORS misconfiguration

Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middleware is setup incorrectly. All origins are reflected, which allows any website to send cross site requests to the rembg server and thus query any API. Even if authentication were to be enabled, allowcredentia...

8.7CVSS6.6AI score0.00179EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/03/03 4:40 p.m.21 views

CVE-2025-25302 Rembg CORS misconfiguration

Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middleware is setup incorrectly. All origins are reflected, which allows any website to send cross site requests to the rembg server and thus query any API. Even if authentication were to be enabled, allowcredentia...

8.7CVSS0.00179EPSS
Exploits1References2
OSV
OSV
added 2025/03/03 4:40 p.m.8 views

CVE-2025-25302 Rembg CORS misconfiguration

Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middleware is setup incorrectly. All origins are reflected, which allows any website to send cross site requests to the rembg server and thus query any API. Even if authentication were to be enabled, allowcredentia...

8.7CVSS6.4AI score0.00179EPSS
Exploits1References4
Rows per page
Query Builder