CVE-2025-31415 - CERT CVE

  1. CVE-2025-31415

ID CVE-2025-31415
Sažetak Missing Authorization vulnerability in YayCommerce YayExtra allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects YayExtra: from n/a through 1.5.2.
Reference
CVSS
Base: 7.6
Impact: 4.7
Exploitability:2.8
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW HIGH
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
Zadnje važnije ažuriranje 01-04-2025 - 20:26
Objavljeno 01-04-2025 - 06:15