CVE-2025-27389 | ColorOS up to 15 Installation authentication spoofing

Inserito da Angelo Barbosa | Dic 5, 2025 | CVE

A vulnerability was found in ColorOS up to 15. It has been rated as critical. Affected by this issue is some unknown functionality of the component Installation Handler. Performing manipulation results in authentication bypass by spoofing.

This vulnerability is reported as CVE-2025-27389. The attack requires a local approach. No exploit exists.

CVE-2025-27389 | ColorOS up to 15 Installation authentication spoofing

Post correlati

CVE-2024-41905 | Siemens SINEC Traffic Analyzer up to 1.x access control (ssa-716317)

CVE-2024-57523 | SourceCodester Packers and Movers Management System 1.0 Users.php cross-site request forgery

CVE-2025-13421 | itsourcecode Human Resource Management System 1.0 NoticeStore.php noticeDesc sql injection

CVE-2024-49377 | OctoPrint up to 1.10.2 cross site scripting (GHSA-xvxq-g8hw-fx4g)