CVE-2025-62503

Publication date

2025-10-30 09:11:16

Family

apache

State

PUBLISHED

Description

User with CREATE and no UPDATE privilege for Pools, Connections, Variables could update existing records via bulk create API with overwrite action.