CVE-2025-29994 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a…
High CVSS: 8.2

CVE-2025-29994

This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to unauthorized access to other user accounts.
Vendor
-
Product
-
CWE
CWE-1390
Yayın Tarihi
2025-03-13 12:15:13
Güncelleme
2025-03-13 12:15:13
Source Identifier
vdisclose@cert-in.org.in
KEV Date Added
-

Kategoriler

CWE-1390 HIGH 2025

Referanslar

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2025-0048