ГлавнаяУязвимости → CVE-2025-66423
7.1высокая

CVE-2025-66423

Описание

Tryton trytond 6.0 before 7.6.11 does not enforce access rights for the route of the HTML editor. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.

Затрагиваемое ПО
Tryton Trytond
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Источники
https://discuss.tryton.org/t/security-release-for-issue-14364/8952https://foss.heptapod.net/tryton/tryton/-/issues/14364