CVE-2025-8796

Medium CVSS: 5.3

A vulnerability has been found in LitmusChaos Litmus up to 3.19.0 and classified as problematic. This vulnerability affects unknown code of the file /auth/delete_project/ of the component Delete Request Handler. The manipulation of the argument projectID leads to missing authorization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Litmuschaos

Product

Litmus

CWE

CWE-862

Yayın Tarihi

2025-08-10 06:15:26

Güncelleme

2025-09-02 18:43:29

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-862 Litmus MEDIUM Litmuschaos 2025

Referanslar

https://github.com/MaiqueSilva/VulnDB/blob/main/readme06.md https://vuldb.com/?ctiid.319324 https://vuldb.com/?id.319324 https://vuldb.com/?submit.625989 https://github.com/MaiqueSilva/VulnDB/blob/main/readme06.md https://vuldb.com/?submit.625989

Benzer Kayıtlar

Medium

CVE-2025-8797

A vulnerability was found in LitmusChaos Litmus up to 3.19.0 and classified as critical. This issue affects some unknown…

Medium

CVE-2025-8795

A vulnerability, which was classified as critical, was found in LitmusChaos Litmus up to 3.19.0. This affects an unknown…

Medium

CVE-2025-8794

A vulnerability, which was classified as problematic, has been found in LitmusChaos Litmus up to 3.19.0. Affected by thi…

Medium

CVE-2025-8793

A vulnerability classified as problematic was found in LitmusChaos Litmus up to 3.19.0. Affected by this vulnerability i…

Medium

CVE-2025-8792

A vulnerability classified as problematic has been found in LitmusChaos Litmus up to 3.19.0. Affected is an unknown func…

Medium

CVE-2025-8791

A vulnerability was found in LitmusChaos Litmus up to 3.19.0. It has been rated as critical. This issue affects some unk…