Security Advisory

CVE-2025-49651

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-09 17:25:11

Last updated 2025-06-11 12:12:00

Assigner HiddenLayer

State PUBLISHED

Description

Missing Authorization in Lablups BackendAI allows attackers to takeover all active sessions; Accessing, stealing, or altering any data accessible in the session. This vulnerability exists in all current versions of BackendAI.

← Browse all CVEs View on cve.org ↗