CVE-2025-48695 – CyberDAVA Privilege Escalation Vulnerability

May 23, 2025

CVE ID : CVE-2025-48695

Published : May 23, 2025, 5:15 a.m. | 3 hours, 34 minutes ago

Description : An issue was discovered in CyberDAVA before 1.1.20. A privilege escalation vulnerability allows a low-privileged user to escalate their privilege by abusing the following API due to the lack of access control: /api/v2/users/user//role/ROLE/ (admin access can be achieved).

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-2394 – Ecovacs Home Android and iOS Mobile Apps Stored XSS Vulnerability

Next Article CVE-2025-5106 – Fujian Kelixun Filename Handler Os Command Injection Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Sam Altman says ChatGPT’s viral Ghibli effect “forced OpenAI to do a lot of unnatural things”

How to get started with Microsoft Copilot on Windows 11

Microsoft blocks employees from sending emails that mention “Palestine” or “Gaza”

I missed out on the Clair Obscur: Expedition 33 Collector’s Edition but thankfully, the developers are launching something special

Perficient is Shaping the Future of Salesforce Innovation

Perficient is Shaping the Future of Salesforce Innovation

Opal – Optimizely’s AI-Powered Marketing Assistant

Content Compliance Without the Chaos: How Optimizely CMP Empowers Financial Services Marketers

Sam Altman says ChatGPT’s viral Ghibli effect “forced OpenAI to do a lot of unnatural things”

Sam Altman says ChatGPT’s viral Ghibli effect “forced OpenAI to do a lot of unnatural things”

How to get started with Microsoft Copilot on Windows 11

Microsoft blocks employees from sending emails that mention “Palestine” or “Gaza”

CVE-2025-48695 – CyberDAVA Privilege Escalation Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-47512 – Tainacan Path Traversal

CVE-2025-37815 – “Microchip PCI1xxxx Linux Kernel IRQ Handler Registration Vulnerability”

ICYMI: Video Series on TCP/IP Application Protocol Design

Shape Lens Blur Effect with SDFs and WebGL

DeepSeek App Transmits Sensitive User and Device Data Without Encryption

Google Cloud TPUs Now Available for HuggingFace users

The Beginning and The End of The User Experience

College Football 25 now costs less than a single drink at a stadium

Skywings Marketing – Best SEO Company in Laxmi Nagar, Delhi for Digital Success

CVE-2025-48695 – CyberDAVA Privilege Escalation Vulnerability

Related Posts