Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/12/27 4:33 a.m.10 views

CVE-2025-15099

A vulnerability was identified in simstudioai sim up to 0.5.27. This vulnerability affects unknown code of the file apps/sim/lib/auth/internal.ts of the component CRON Secret Handler. The manipulation of the argument INTERNALAPISECRET leads to improper authentication. It is possible to initiate t...

9.8CVSS7.5AI score0.00725EPSS
Exploits1References1
OSV
OSV
added 2025/12/26 4:15 a.m.4 views

CVE-2025-15099

A vulnerability was identified in simstudioai sim up to 0.5.27. This vulnerability affects unknown code of the file apps/sim/lib/auth/internal.ts of the component CRON Secret Handler. The manipulation of the argument INTERNALAPISECRET leads to improper authentication. It is possible to initiate t...

9.8CVSS7.5AI score
Exploits0References7
CVE
CVE
added 2025/12/26 4:2 a.m.15 views

CVE-2025-15099

CVE-2025-15099 affects simstudioai sim up to version 0.5.27, specifically the CRON Secret Handler’s file apps/sim/lib/auth/internal.ts. The vulnerability arises from manipulation of the INTERNAL_API_SECRET parameter, enabling improper authentication. It is exploitable remotely, and publicly avail...

9.8CVSS7AI score0.00725EPSS
Exploits1References7Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/26 4:2 a.m.4 views

CVE-2025-15099 simstudioai sim CRON Secret internal.ts improper authentication

A vulnerability was identified in simstudioai sim up to 0.5.27. This vulnerability affects unknown code of the file apps/sim/lib/auth/internal.ts of the component CRON Secret Handler. The manipulation of the argument INTERNALAPISECRET leads to improper authentication. It is possible to initiate t...

7.5CVSS7AI score0.00725EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/12/26 4:2 a.m.31 views

CVE-2025-15099 simstudioai sim CRON Secret internal.ts improper authentication

A vulnerability was identified in simstudioai sim up to 0.5.27. This vulnerability affects unknown code of the file apps/sim/lib/auth/internal.ts of the component CRON Secret Handler. The manipulation of the argument INTERNALAPISECRET leads to improper authentication. It is possible to initiate t...

7.5CVSS0.00725EPSS
Exploits1References7
Rows per page
Query Builder