CVE-2025-12461

N/A

Descricao

This vulnerability allows an attacker to access parts of the application that are not protected by any type of access control. The attacker could access this path ‘…/epsilonnet/License/About.aspx’ and obtain information on both the licence and the configuration of the product by knowing which modules are installed.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado10/29/2025

Ultima modificacao10/30/2025

Fontenvd

Avistamentos honeypot0

Fraquezas (CWE)

CWE-522

Referencias

https://www.incibe.es/en/incibe-cert/notices/aviso/unprotected-access-parts-application-epsilon-rh-grupo-castilla(cve-coordination@incibe.es)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.