CVE-2025-49852 | ControlID iDSecure On-premises up to 4.7.48.0 server-side request forgery (icsa-25-175-05)

Inserito da Angelo Barbosa | Giu 25, 2025 | CVE

A vulnerability has been found in ControlID iDSecure On-premises up to 4.7.48.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to server-side request forgery.

This vulnerability is known as CVE-2025-49852. The attack can be launched remotely. There is no exploit available.

CVE-2025-49852 | ControlID iDSecure On-premises up to 4.7.48.0 server-side request forgery (icsa-25-175-05)

Post correlati

CVE-2024-22627 | Complete Supplier Management System 1.0 edit_distributor.php id sql injection

CVE-2024-26812 | Linux Kernel up to 6.1.83/6.6.23/6.7.11/6.8.2 INTx eventfd_signal Privilege Escalation

CVE-2023-35075 | Mattermost up to 7.8.12/8.1.3 innerText/textContent cross site scripting

CVE-2023-46750 | Apache Shiro up to 1.12.x/2.0.0-alpha-3 Form Authentication redirect