Security Advisory

CVE-2025-25585

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-18 00:00:00

Last updated 2025-03-19 18:24:48

Assigner mitre

State PUBLISHED

Description

Incorrect access control in the component /config/WebSecurityConfig.java of yimioa before v2024.07.04 allows unauthorized attackers to arbitrarily modify Administrator passwords.

← Browse all CVEs View on cve.org ↗