CVE-2025-12623 | fushengqian fuint up to 41e26be8a2c609413a0feaa69bdad33a71ae8032 Authentication Token ClientSignController.java authorization (Issue 67)

A vulnerability labeled as critical has been found in fushengqian fuint up to 41e26be8a2c609413a0feaa69bdad33a71ae8032. Affected by this issue is some unknown functionality of the file fuint-application/src/main/java/com/fuint/module/clientApi/controller/ClientSignController.java of the component Authentication Token Handler. Such manipulation leads to authorization bypass.

This vulnerability is traded as CVE-2025-12623. The attack may be launched remotely. Furthermore, there is an exploit available.

This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases.

CVE-2025-12623 | fushengqian fuint up to 41e26be8a2c609413a0feaa69bdad33a71ae8032 Authentication Token ClientSignController.java authorization (Issue 67)

Post correlati

CVE-2024-8144 | ClassCMS 4.8 Logo /index.php/admin cross site scripting

CVE-2024-25420 | Ignite Realtime Openfire up to 4.9.0 System Property admin.authorizedJIDs improper authorization

CVE-2024-39772 | Mattermost Desktop App up to 5.8.0 access control

CVE-2024-44757 | NUS-M9 ERP Management Software 3.0.0 /Basics/DownloadInpFile information disclosure