CVE-2025-62236

Medium CVSS: 6.9

The Frontier Airlines website has a publicly available endpoint that validates if an email addresses is associated with an account. An unauthenticated, remote attacker could determine valid email addresses, possibly aiding in further attacks.

Vendor

Flyfrontier

Product

Frontier Airlines

CWE

CWE-204

Yayın Tarihi

2025-10-23 20:15:40

Güncelleme

2025-12-31 02:34:14

Source Identifier

9119a7d8-5eab-497f-8521-727c672e3725

KEV Date Added

Kategoriler

CWE-204 Frontier Airlines MEDIUM Flyfrontier 2025

Referanslar

https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-296-01.json https://www.cve.org/CVERecord?id=CVE-2025-62236