CVE-2025-62645 | Restaurant Brands International Assistant Platform up to 2025-09-06 GraphQL Mutation privileges assignment

A vulnerability was found in Restaurant Brands International Assistant Platform up to 2025-09-06. It has been classified as critical. This affects an unknown function of the component GraphQL Mutation Handler. This manipulation causes incorrect privilege assignment.

This vulnerability appears as CVE-2025-62645. The attack may be initiated remotely. There is no available exploit.

This product is available as a managed service. Users are not able to maintain vulnerability countermeasures themselves.

CVE-2025-62645 | Restaurant Brands International Assistant Platform up to 2025-09-06 GraphQL Mutation privileges assignment

Post correlati

CVE-2024-44589 | D-Link DCS-960L 1.09 HNAP Service Login stack-based overflow

CVE-2024-38357 | TinyMCE up to 5.11.0/6.8.3/7.2.0 cross site scripting (GHSA-w9jx-4g6g-rp7x)

CVE-2024-4643 | Element Pack Elementor Addons Plugin up to 5.7.1 on WordPress cross site scripting

CVE-2024-49525 | Adobe Substance3D Painter up to 10.1.0 heap-based overflow (apsb24-86)