CVE-2025-70982 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Incorrect access control in the importUser function of SpringBlade v4.5.0 allows attackers with low-level privileges to arbitrarily import sensitive user data.
Critical CVSS: 9.9

CVE-2025-70982

Incorrect access control in the importUser function of SpringBlade v4.5.0 allows attackers with low-level privileges to arbitrarily import sensitive user data.
Vendor
Bladex
Product
Springblade
CWE
CWE-284
Yayın Tarihi
2026-01-26 17:16:11
Güncelleme
2026-02-12 15:43:24
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-284 Springblade CRITICAL Bladex 2026

Referanslar

https://gist.github.com/old6ma/ea60151aa40ddc1cfb51fbaa0c173117 https://github.com/chillzhuang/SpringBlade https://github.com/chillzhuang/SpringBlade/issues/34