High severity7.5NVD Advisory· Published Feb 11, 2026· Updated Apr 1, 2026
CVE-2025-70029
CVE-2025-70029
Description
An issue in Sunbird-Ed SunbirdEd-portal v1.13.4 allows attackers to obtain sensitive information. The application disables TLS/SSL certificate validation by setting 'rejectUnauthorized': false in HTTP request options
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:sunbird:sunbirded-portal:1.13.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sunbird:sunbirded-portal:1.13.4:*:*:*:*:*:*:*
- (no CPE)range: = 1.13.4
Patches
Vulnerability mechanics
References
1- gist.github.com/zcxlighthouse/e662c8316f98a1c72735cda4f6bfcfe6nvdThird Party Advisory
News mentions
0No linked articles in our index yet.