CVE-2025-25767 | MRCMS 3.1.2 Request UserController.java Privilege Escalation

Inserito da Angelo Barbosa | Feb 22, 2025 | CVE

A vulnerability classified as critical was found in MRCMS 3.1.2. Affected by this vulnerability is an unknown functionality of the file /controller/UserController.java of the component Request Handler. The manipulation leads to Privilege Escalation.

This vulnerability is known as CVE-2025-25767. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2025-25767 | MRCMS 3.1.2 Request UserController.java Privilege Escalation

Post correlati

CVE-2024-45823 | Rockwell Automation FactoryTalk Batch View 2.01.00 improper authentication

CVE-2025-1387 | Learning Digital Orca HCM up to 10.x weak authentication

CVE-2024-56627 | Linux Kernel up to 6.1.119/6.6.65/6.12.4 Setting ksmbd.conf ksmbd_vfs_stream_read streams_xattr out-of-bounds

CVE-2024-51527 | Huawei HarmonyOS/EMUI Gallery App access control