Unrated severityNVD Advisory· Published Mar 18, 2025· Updated Mar 19, 2025
CVE-2025-25585
CVE-2025-25585
Description
Incorrect access control in the component /config/WebSecurityConfig.java of yimioa before v2024.07.04 allows unauthorized attackers to arbitrarily modify Administrator passwords.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.