CVE-2025-11853 | Sismics Teedy up to 1.11 API Endpoint /api/file access control

Inserito da Angelo Barbosa | Ott 16, 2025 | CVE

A vulnerability categorized as critical has been discovered in Sismics Teedy up to 1.11. This affects an unknown function of the file /api/file of the component API Endpoint. Executing manipulation can lead to improper access controls.

This vulnerability appears as CVE-2025-11853. The attack may be performed from remote. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-11853 | Sismics Teedy up to 1.11 API Endpoint /api/file access control

Post correlati

CVE-2025-2254 | GitLab Community Edition/Enterprise Edition up to 17.10.7/17.11.3/18.0.1 cross site scripting (Issue 524636)

CVE-2023-7202 | Fatal Error Notify Plugin up to 1.5.2 on WordPress Test Error authorization

CVE-2021-47201 | Linux Kernel up to 5.4.161/5.10.81/5.15.4 iavf_free_queues denial of service

CVE-2024-1186 | Munsoft Easy Archive Recovery 2.0 Registration Key denial of service