ГлавнаяУязвимости → CVE-2025-25950
8.1высокая

CVE-2025-25950

Описание

Incorrect access control in the component /rest/staffResource/update of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows create and modify user accounts, including an Administrator account.

Затрагиваемое ПО
Serosoft Academia student information system
CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Источники
https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2024-89637https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2025-25950https://github.com/el-viper/cve-research/tree/main/CVEs/CVE-2025-25950