Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/08/26 10:25 a.m.1 views

CVE-2025-1501 Incorrect authorization for traces request/download in CMC before 25.1.0

An access control vulnerability was discovered in the Request Trace and Download Trace functionalities of CMC before 25.1.0 due to a specific access restriction not being properly enforced for users with limited privileges. An authenticated user with limited privileges can request and download...

5.3CVSS6.4AI score0.00192EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/26 10:25 a.m.6 views

CVE-2025-1501 Incorrect authorization for traces request/download in CMC before 25.1.0

An access control vulnerability was discovered in the Request Trace and Download Trace functionalities of CMC before 25.1.0 due to a specific access restriction not being properly enforced for users with limited privileges. An authenticated user with limited privileges can request and download...

5.3CVSS0.00192EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.3 views

PT-2025-34753 · Cmc · Cmc

Name of the Vulnerable Software and Affected Versions: CMC versions prior to 25.1.0 Description: An access control issue was identified in the Request Trace and Download Trace functionalities. Improper access restrictions allow authenticated users with limited privileges to request and download...

5.3CVSS7.1AI score0.00192EPSS
Exploits0References6
NOZOMI
NOZOMI
added 2025/08/26 12:0 a.m.5 views

Incorrect authorization for traces request/download in CMC before 25.1.0

Summary An access control vulnerability was discovered in the Request Trace and Download Trace functionalities due to a specific access restriction not being properly enforced for users with limited privileges. Impact An authenticated user with limited privileges can request and download trace...

5.3CVSS6.7AI score0.00192EPSS
Exploits0Affected Software1
Rows per page
Query Builder