Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/07/09 6:21 a.m.14 views

CVE-2025-7114

A vulnerability was found in SimStudioAI sim up to 37786d371e17d35e0764e1b5cd519d873d90d97b. It has been declared as critical. Affected by this vulnerability is the function POST of the file apps/sim/app/api/files/upload/route.ts of the component Session Handler. The manipulation of the argument...

7.5CVSS7.2AI score0.00498EPSS
Exploits1References1
circl
circl
added 2025/07/07 7:51 a.m.14 views

CVE-2025-7114

creationtimestamp| type| source ---|---|--- 2025-07-07 07:51:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltecijckmw2r...

7.5CVSS7.2AI score0.00498EPSS
Exploits1References1
nvd
nvd
added 2025/07/07 6:15 a.m.10 views

CVE-2025-7114

A vulnerability was found in SimStudioAI sim up to 37786d371e17d35e0764e1b5cd519d873d90d97b. It has been declared as critical. Affected by this vulnerability is the function POST of the file apps/sim/app/api/files/upload/route.ts of the component Session Handler. The manipulation of the argument...

7.5CVSS0.00498EPSS
Exploits1References4
cvelist
cvelist
added 2025/07/07 5:32 a.m.23 views

CVE-2025-7114 SimStudioAI sim Session route.ts POST missing authentication

A vulnerability was found in SimStudioAI sim up to 37786d371e17d35e0764e1b5cd519d873d90d97b. It has been declared as critical. Affected by this vulnerability is the function POST of the file apps/sim/app/api/files/upload/route.ts of the component Session Handler. The manipulation of the argument...

7.5CVSS0.00498EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2025/07/07 5:32 a.m.8 views

CVE-2025-7114 SimStudioAI sim Session route.ts POST missing authentication

A vulnerability was found in SimStudioAI sim up to 37786d371e17d35e0764e1b5cd519d873d90d97b. It has been declared as critical. Affected by this vulnerability is the function POST of the file apps/sim/app/api/files/upload/route.ts of the component Session Handler. The manipulation of the argument...

7.5CVSS7.2AI score0.00498EPSS
Exploits1References4
cve
cve
added 2025/07/07 5:32 a.m.40 views

CVE-2025-7114

CVE-2025-7114 targets SimStudioAI sim up to commit 37786d371e17d35e0764e1b5cd519d873d90d97b. The flaw resides in the POST handler for apps/sim/app/api/files/upload/route.ts (Session Handler), where the Request can be manipulated without authentication, enabling remote, unauthenticated access. Mul...

7.5CVSS7.2AI score0.00498EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder