4 matches found
CVE-2025-49652
creationtimestamp| type| source ---|---|--- 2025-06-09 19:48:02+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17742 2025-06-09 19:48:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lr75iwximc2m...
CVE-2025-49652
Missing Authentication in the registration feature of Lablup's BackendAI allows arbitrary users to create user accounts that can access private data even when registration is disabled...
CVE-2025-49652
The CVE covers Lablup’s BackendAI, where the registration feature lacks authentication, allowing arbitrary users to create accounts and access private data even when registration is disabled. Concrete impact stated across sources: unauthorized account creation with high/critical severity (CVSS 3....
CVE-2025-49652 Improper access control allows arbitrary account creation
Missing Authentication in the registration feature of Lablup's BackendAI allows arbitrary users to create user accounts that can access private data even when registration is disabled...