CVE-2025-54765

Published: Jul 29, 2025Modified: Nov 3, 2025

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to import the appliance configuration, allowing an attacker to control the configuration of the appliance, to include granting themselves administrative level permissions.

Affected (1)

Products: Xorux: Xormon

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Xorux Xormon	Up to 1.8.0

Related CWEs

Incorrect Use of Privileged APIs

The product does not conform to the API requirements for a function call that requires extra privileges. This could allow attackers to gain privileges by causing the function to be called incorrectly.

References (3)

https://korelogic.com/Resources/Advisories/KL-001-2025-013.txt

Source: bbf0bd87-ece2-41be-b873-96928ee8fab9

ExploitThird Party Advisory

https://xormon.com/note190.php

Source: bbf0bd87-ece2-41be-b873-96928ee8fab9

Release Notes

http://seclists.org/fulldisclosure/2025/Jul/16

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.