CVE-2025-12924 | rymcu forest up to de53ce79db9faa2efc4e79ce1077a302c42a1224 BankController.java GlobalResult authorization (Issue 198)

A vulnerability marked as critical has been reported in rymcu forest up to de53ce79db9faa2efc4e79ce1077a302c42a1224. This issue affects the function GlobalResult of the file src/main/java/com/rymcu/forest/web/api/bank/BankController.java. The manipulation leads to missing authorization.

This vulnerability is listed as CVE-2025-12924. The attack may be initiated remotely. There is no available exploit.

This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available.

CVE-2025-12924 | rymcu forest up to de53ce79db9faa2efc4e79ce1077a302c42a1224 BankController.java GlobalResult authorization (Issue 198)

Post correlati

CVE-2023-29080 | Revenera InstallShield prior 2021 R2/2022 R2 InstallScript file access

CVE-2025-58069 | AutomationDirect CLICK PLUS C0-0x CPU up to 3.70 Initial Message hard-coded key (icsa-25-266-01)

CVE-2024-0474 | code-projects Dormitory Management System 1.0 login.php username sql injection

CVE-2024-2760 | Bkav Home v7816 Build 2403161130 IOCTL BkavSDFlt.sys memory leak