CVE-2025-4210 | Casdoor up to 1.811.0 SCIM User Creation Endpoint controllers/scim.go HandleScim authorization

Inserito da Angelo Barbosa | Mag 2, 2025 | CVE

A vulnerability classified as critical was found in Casdoor up to 1.811.0. This vulnerability affects the function HandleScim of the file controllers/scim.go of the component SCIM User Creation Endpoint. The manipulation leads to authorization bypass.

This vulnerability was named CVE-2025-4210. The attack can be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2025-4210 | Casdoor up to 1.811.0 SCIM User Creation Endpoint controllers/scim.go HandleScim authorization

Post correlati

CVE-2024-5257 | GitLab Community Edition/Enterprise Edition up to 17.0.3/17.1.1 Group Namespace URL admin_compliance_framework access control (Issue 463149)

CVE-2023-51453 | DJI Mavic 3 Pro Service Port 10000 libv2_sdk.so process_push_file denial of service

CVE-2024-12837 | Imagination Technologies Graphics DDK up to 24.3 RTM GPU System Call use after free

CVE-2023-27195 | Trimble TM4Web 22.2.0 Registration tm_ajax.msw access control