Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin.
Metrics
Affected Vendors & Products
References
History
Mon, 13 Jan 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Mon, 13 Jan 2025 15:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin. | |
Weaknesses | CWE-352 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2025-01-13T00:00:00
Updated: 2025-01-13T17:37:53.304Z
Reserved: 2025-01-09T00:00:00
Link: CVE-2025-22963
Vulnrichment
Updated: 2025-01-13T17:37:48.377Z
NVD
Status : Received
Published: 2025-01-13T16:15:19.367
Modified: 2025-01-13T16:15:19.367
Link: CVE-2025-22963
Redhat
No data.