5 matches found
CVE-2025-6512
On a client with a non-admin user, a script can be integrated into a report. The reports could later be executed on the BRAIN2 server with administrator rights...
CVE-2025-6512
creationtimestamp| type| source ---|---|--- 2025-06-23 13:44:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19199 2025-06-23 14:30:48+00:00| seen| Telegram/kY6ODbLBr7-MJN47xDio97AVMRDhVNEbfZ732-se0mfIc 2025-06-23 15:24:13+00:00| seen|...
CVE-2025-6512 Scripts within reports executable on BRAIN2 Server
On a client with a non-admin user, a script can be integrated into a report. The reports could later be executed on the BRAIN2 server with administrator rights...
CVE-2025-6512
CVE-2025-6512 affects BRAIN2 (PT-Security entry PT-2025-26595) with BRAIN2 versions 0.0–3.05 vulnerable to code injected via report scripts by non-admin users. The script in a report can be executed on the BRAIN2 server with administrator rights, enabling potential code injection. Root cause: imp...
CVE-2025-6512 Scripts within reports executable on BRAIN2 Server
On a client with a non-admin user, a script can be integrated into a report. The reports could later be executed on the BRAIN2 server with administrator rights...