Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/03/15 11:21 a.m.12 views

CVE-2025-29994

This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to...

8.2CVSS7.4AI score0.00389EPSS
Exploits0References1
Circl
Circl
added 2025/03/13 1:8 p.m.6 views

CVE-2025-29994

creationtimestamp| type| source ---|---|--- 2025-03-13 13:08:44+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114155279058410374 2025-03-13 13:31:52+00:00| seen| Telegram/xe2ey9QZy3C60YFmNe9CqutDcHb7CC1cr5CKlx9gtbgm3M 2025-03-13 15:37:08+00:00| seen| https://t.me/cvedetector/20214...

8.2CVSS4.8AI score0.00389EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/13 11:12 a.m.18 views

CVE-2025-29994 Improper Authentication Vulnerability in CAP back office application

This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to...

8.2CVSS0.00389EPSS
Exploits0References1
CVE
CVE
added 2025/03/13 11:12 a.m.83 views

CVE-2025-29994

CVE-2025-29994 affects the CAP back office application. The root cause is an improper authentication check at an API endpoint, allowing an unauthenticated remote attacker with a valid login ID to manipulate API input parameters via URL/payload and gain unauthorized access to other user accounts. ...

8.2CVSS6.8AI score0.00389EPSS
Exploits0References1
Rows per page
Query Builder