Medium severity5.3NVD Advisory· Published Jul 29, 2025· Updated Jun 17, 2026
CVE-2025-54766
CVE-2025-54766
Description
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to export the appliance configuration, exposing sensitive information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- korelogic.com/Resources/Advisories/KL-001-2025-012.txtnvdExploitThird Party Advisory
- xormon.com/note190.phpnvdRelease Notes
- seclists.org/fulldisclosure/2025/Jul/15nvd
News mentions
0No linked articles in our index yet.