4 matches found
CVE-2025-54596
Abnormal Security /v1.0/rbac/usersv2/USERID/ before 2025-02-19 allows downgrading the privileges of other user accounts...
CVE-2025-54596
Abnormal Security /v1.0/rbac/usersv2/USERID/ before 2025-02-19 allows downgrading the privileges of other user accounts...
CVE-2025-54596
Abnormal Security /v1.0/rbac/usersv2/USERID/ before 2025-02-19 allows downgrading the privileges of other user accounts...
CVE-2025-54596
CVE-2025-54596 affects Abnormal Security API: the endpoint /v1.0/rbac/users_v2/{USER_ID}/ (pre-2025-02-19) allows downgrading the privileges of other user accounts. CVSS v3.1 base score 4.3 (Medium) with Network attack vector, Low privileges required, No user interaction. Remediation cited: updat...