CVE-2025-13084 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The users endpoint in the groov View API returns a list of all users and associated metadata including their API keys. This endpoint requires an Editor role t…
Medium CVSS: 6.1

CVE-2025-13084

The users endpoint in the groov View API returns a list of all users and
associated metadata including their API keys. This endpoint requires an
Editor role to access and will display API keys for all users,
including Administrators.
Vendor
-
Product
-
CWE
CWE-1230
Yayın Tarihi
2025-11-26 18:15:47
Güncelleme
2025-12-01 15:39:53
Source Identifier
ics-cert@hq.dhs.gov
KEV Date Added
-

Kategoriler

CWE-1230 MEDIUM 2025

Referanslar

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsa-25-329-04.json https://www.cisa.gov/news-events/ics-advisories/icsa-25-329-04 https://www.opto22.com/support/resources-tools/knowledgebase/kb91325