CyberDAVA

CVEs (1)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-48695	Michaelcheung Research Vulnerability Disclosure	Med	0.42	6.4	0.00		May 23, 2025	An issue was discovered in CyberDAVA before 1.1.20. A privilege escalation vulnerability allows a low-privileged user to escalate their privilege by abusing the following API due to the lack of access control: /api/v2/users/user//role/ROLE/ (admin access can be achieved).

CVE-2025-48695MedMay 23, 2025
Michaelcheung Research
Vulnerability Disclosure
risk 0.42cvss 6.4epss 0.00
An issue was discovered in CyberDAVA before 1.1.20. A privilege escalation vulnerability allows a low-privileged user to escalate their privilege by abusing the following API due to the lack of access control: /api/v2/users/user//role/ROLE/ (admin access can be achieved).