Unrated severityNVD Advisory· Published Aug 6, 2025· Updated Aug 6, 2025

CVE-2025-51054

Description

Vedo Suite 2024.17 is vulnerable to Incorrect Access Control, which allows remote attackers to obtain a valid high privilege JWT token without prior authentication via sending an empty HTTP POST request to the /autologin/ API endpoint.

Affected products

Vedo Suite/Vedo Suitedescription
Vedo/Vedo Suitellm-create
Range: = 2024.17

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bottinelli.commitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000