CVE-2025-47411 – Apache StreamPipes: Leverage of User ID for Privilege Escalation

CVE ID : CVE-2025-47411

Published : Jan. 1, 2026, 5:15 p.m. | 1 hour, 9 minutes ago

Description : A user with a legitimate non-administrator account can exploit a vulnerability in the user ID creation mechanism in Apache StreamPipes that allows them to swap the username of an existing user with that of an administrator.

This vulnerability allows an attacker to gain administrative control over the application by manipulating JWT tokens, which can lead to data tampering, unauthorized access and other security issues.

This issue affects Apache StreamPipes: through 0.97.0.

Users are recommended to upgrade to version 0.98.0, which fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-47411 – Apache StreamPipes: Leverage of User ID for Privilege Escalation

تکمیل ظرفیت سرور لهستان

سرور مناسب برای ترید و ارز دیجیتال

دیتاسنتر جدید در لهستان

سرور های جدید از اسپانیا

AMD EPYC & Ryzen از کشور انگلستان

آفر های جدید AMD EPYC و AMD Ryzen

آفر سرور اختصاصی از آمریکا

افزایش قیمت دامنه های ir از ۳۱ خرداد

افزایش قیمت جهانی دامنه .com

آفر های جدید سرور اختصاصی مرداد 1403

CVE-2025-15409 – code-projects Online Guitar Store Delete_product.php sql injection

سرور های جدید از روسیه-وارز

تخفیف ویژه دامنه .ASIA

ثبت دامنه .IO

انتقال رایگان پسوند دامنه PW

Kerio Control 9.2.4 Build 2223

نوشته های مشابه

CVE-2025-15411 – WebAssembly wabt wasm-decompile InsertNode memory corruption

CVE-2025-69203 – Signal K Server Vulnerable to Access Request Spoofing

CVE-2025-68619 – Signal K Server Vulnerable to Remote Code Execution via Malicious npm Package

CVE-2025-68273 – Signal K Server Vulnerable to Unauthenticated Information Disclosure via Exposed Endpoints