Medium severity5.3NVD Advisory· Published Jul 29, 2025· Updated Jun 17, 2026
CVE-2025-54768
CVE-2025-54768
Description
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to download logs from the appliance configuration, exposing sensitive information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Xorux/LPAR2RRDv5Range: 8.04
Patches
Vulnerability mechanics
References
3- korelogic.com/Resources/Advisories/KL-001-2025-015.txtnvdExploitThird Party Advisory
- lpar2rrd.com/note800.phpnvdRelease Notes
- seclists.org/fulldisclosure/2025/Jul/18nvd
News mentions
0No linked articles in our index yet.