CVE-2025-48695 – CyberDAVA Privilege Escalation Vulnerability

CVE ID : CVE-2025-48695

Published : May 23, 2025, 5:15 a.m. | 2 hours, 2 minutes ago

Description : An issue was discovered in CyberDAVA before 1.1.20. A privilege escalation vulnerability allows a low-privileged user to escalate their privilege by abusing the following API due to the lack of access control: /api/v2/users/user//role/ROLE/ (admin access can be achieved).

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…