CVE-2025-11322 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A flaw has been found in Mangati NovoSGA up to 2.2.12. The impacted element is an unknown function of the file /novosga.users/new of the component User Creation…
Medium CVSS: 6.3

CVE-2025-11322

A flaw has been found in Mangati NovoSGA up to 2.2.12. The impacted element is an unknown function of the file /novosga.users/new of the component User Creation Page. Executing manipulation of the argument Senha/Confirmação da senha can lead to weak password requirements. The attack can be launched remotely. Attacks of this nature are highly complex. The exploitability is regarded as difficult. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Vendor
-
Product
-
CWE
CWE-521
Yayın Tarihi
2025-10-06 06:15:35
Güncelleme
2025-10-06 14:56:21
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-521 MEDIUM 2025

Referanslar

https://github.com/marcelomulder/CVE/blob/main/NovoSga/CVE-2025-11322.md https://github.com/marcelomulder/CVE/blob/main/NovoSga/Weak%20Password%20Policy%20in%20Novosga.md https://vuldb.com/?ctiid.327203 https://vuldb.com/?id.327203 https://vuldb.com/?submit.664517