CVE-2025-27583 | Serosoft Academia Student Information System EagleR 1.0.118 findAllUsersAcrossOrg access control

Posted by Angelo Barbosa | Mar 3, 2025 | CVE

A vulnerability was found in Serosoft Academia Student Information System EagleR 1.0.118. It has been rated as critical. This issue affects some unknown processing of the file /rest/staffResource/findAllUsersAcrossOrg. The manipulation leads to improper access controls.

The identification of this vulnerability is CVE-2025-27583. The attack needs to be done within the local network. There is no exploit available.

CVE-2025-27583 | Serosoft Academia Student Information System EagleR 1.0.118 findAllUsersAcrossOrg access control

Related Posts

CVE-2024-8124 | GitLab Community Edition/Enterprise Edition up to 17.1.6/17.2.4/17.3.1 glm_source redos (Issue 480533)

CVE-2023-48695 | azure-rtos usbx up to 6.2.1 out-of-bounds write (GHSA-mwj9-rpph-v8wc)

CVE-2023-42225 | Pat Infinite Solutions HelpdeskAdvanced up to 11.0.33 Attachment/DownloadTempFile path traversal

CVE-2022-44589 | miniOrange Google Authenticator Plugin up to 5.6.1 on WordPress information disclosure