4 matches found
CVE-2025-5409 Mist Community Edition API Token views.py create_token access control
A vulnerability was found in Mist Community Edition up to 4.7.1. It has been classified as critical. This affects the function createtoken of the file src/mist/api/auth/views.py of the component API Token Handler. The manipulation leads to improper access controls. It is possible to initiate the...
CVE-2025-5409 Mist Community Edition API Token views.py create_token access control
A vulnerability was found in Mist Community Edition up to 4.7.1. It has been classified as critical. This affects the function createtoken of the file src/mist/api/auth/views.py of the component API Token Handler. The manipulation leads to improper access controls. It is possible to initiate the...
CVE-2025-5409
Mist Community Edition up to 4.7.1 contains a vulnerability in the API Token Handler’s create_token function (src/mist/api/auth/views.py) that enables improper access controls. The issue allows remote initiation of an attack and has publicly disclosed exploits. Upgrading to version 4.7.2 addresse...
CVE-2025-5409
creationtimestamp| type| source ---|---|--- 2025-05-31 17:13:32+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114603564224967709 2025-06-01 22:30:52+00:00| published-proof-of-concept| Telegram/59QW1O-7JtIhFv-RKnup6MDlRCCkwZK5QAQgzoPYi1FXic 2025-06-01 23:15:18+00:00| seen|...