VYPR
Medium severity5.0OSV Advisory· Published May 15, 2025· Updated Apr 15, 2026

CVE-2025-48024

CVE-2025-48024

Description

In BlueWave Checkmate before 2.1, an authenticated regular user can access sensitive application secrets via the /api/v1/settings endpoint.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • v1.0, v1.1.0, v2.0.1, …+ 1 more
    • (no CPE)range: v1.0, v1.1.0, v2.0.1, …
    • (no CPE)range: <2.1

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.