CVE-2025-4210 – Casdoor SCIM User Creation Endpoint Authorization Bypass Vulnerability

May 2, 2025

CVE ID : CVE-2025-4210

Published : May 2, 2025, 4:15 p.m. | 34 minutes ago

Description : A vulnerability classified as critical was found in Casdoor up to 1.811.0. This vulnerability affects the function HandleScim of the file controllers/scim.go of the component SCIM User Creation Endpoint. The manipulation leads to authorization bypass. The attack can be initiated remotely. Upgrading to version 1.812.0 is able to address this issue. The name of the patch is 3d12ac8dc2282369296c3386815c00a06c6a92fe. It is recommended to upgrade the affected component.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleGrand Theft Auto 6 has been DELAYED — will now miss 2025 launch window entirely

Next Article Microsoft Bing is stealing tens of millions of Google’s search users according to the latest data

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

How I make my own NFC tags to share my Wi-Fi password with guests – it’s easy!

Microsoft Bing is stealing tens of millions of Google’s search users according to the latest data

Microsoft could bring Elon Musk’s Grok AI model to Azure — Cozying up with OpenAI’s arch-nemesis xAI for its AI Foundry

Perficient is Headed to Salesforce Connections 2025: Here’s What You Need to Know

Perficient is Headed to Salesforce Connections 2025: Here’s What You Need to Know

Perficient Wins 2025 Delivery Award at Appian World for Second Consecutive Year

JavaScript Pulse: Weekly Dev Digest – May 2, 2025

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

Spf Permerror Troubleshooting Guide For Better Email Deliverability Today

KEditBookmarks is a bookmark organizer and editor

CVE-2025-4210 – Casdoor SCIM User Creation Endpoint Authorization Bypass Vulnerability

CISA Adds Two New Exploited Vulnerabilities to Its Catalog: CVE-2024-38475 and CVE-2023-44221

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

French Authorities Seized Nearly $6M in Child Sexual Abuse and Drug Dealing Platform Takedown

Better Web Security Means Less Convenience â€“ For Now

12 Best Free and Open Source QR Code Tools

LMMS-EVAL: A Unified and Standardized Multimodal AI Benchmark Framework for Transparent and Reproducible Evaluations

Man found guilty of planting infinite loop logic bomb on ex-employer’s system

This $3,000 Android Trojan Targeting Banks and Cryptocurrency Exchanges

InnoCN 49Q1R Review – Ultrawide Curved 49” QD-OLED Gaming Monitor for Just $1000

Automate building guardrails for Amazon Bedrock using test-driven development

CVE-2025-4210 – Casdoor SCIM User Creation Endpoint Authorization Bypass Vulnerability

Related Posts