ГлавнаяУязвимости → CVE-2025-27583
9.1критическая

CVE-2025-27583

Описание

Incorrect access control in the component /rest/staffResource/findAllUsersAcrossOrg of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows create and modify user accounts, including an Administrator account.

Затрагиваемое ПО
Serosoft Academia student information system
CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Источники
https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2024-53637