← Back

CVE-2025-25586

nvd nist
Published: Mar 18, 2025Modified: Apr 1, 2025

JSON object

Loading...
4.2
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
Exploitability: 0.8 / Impact: 3.4
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

yimioa before v2024.07.04 was discovered to contain an information disclosure vulnerability via the component /resources/application.yml.

Affected (1)

Products: R1bbit: Yimioa
R1bbit
1 product
Yimioa
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Yimioa
Before 2024-07-04

Related CWEs

CWE-538
Insertion of Sensitive Information into Externally-Accessible File or Directory
The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.

References (1)

Source: cve@mitre.org
ExploitIssue Tracking

Timeline

No history available yet.