CVE-2025-48381 – CVAT Information Disclosure Vulnerability

May 30, 2025

CVE ID : CVE-2025-48381

Published : May 30, 2025, 4:15 a.m. | 48 minutes ago

Description : Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. In versions starting from 2.4.0 to before 2.38.0, an authenticated CVAT user may be able to retrieve the IDs and names of all tasks, projects, labels, and the IDs of all jobs and quality reports on the CVAT instance. In addition, if the instance contains many resources of a particular type, retrieving this information may tie up system resources, denying access to legitimate users. This issue has been patched in version 2.38.0.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48491 – Project AI Exposed Hardcoded API Key Vulnerability

Next Article CVE-2025-48068 – Next.js App Router Local Source Code Exposure

Highlights

CVE-2025-6694 – LabRedesCefetRJ WeGIA Cross-Site Scripting Vulnerability

June 26, 2025

CVE ID : CVE-2025-6694

Published : June 26, 2025, 2:15 p.m. | 49 minutes ago

Description : A vulnerability has been found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This vulnerability affects unknown code of the file /html/matPat/adicionar_unidade.php of the component Adicionar Unidade. The manipulation of the argument Insira a nova unidade leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Look out, Meta Ray-Bans! These AI glasses just raised over $1M in pre-orders in 3 days

Samsung ‘Galaxy Glasses’ powered by Android XR are reportedly on track to be unveiled this month

The M4 iPad Pro is discounted $100 as a last-minute Labor Day deal

Distribution Release: Linux From Scratch 12.4

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Installing Proxmox on a Raspberry Pi to run Virtual Machines on it

Download Transcribe! for Windows

Microsoft Fixes CertificateServicesClient (CertEnroll) Error in Windows 11

CVE-2025-48381 – CVAT Information Disclosure Vulnerability

Hacker suspected of trying to cheat his way into university is arrested in Spain

ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics

HoloMem awarded Innovate UK Smart Grant to validate holographic data storage

DOOM: The Dark Ages reaches 3 million players 7x faster than DOOM: Eternal

Gradia lets you quickly edit images for social media

Docker Registry Vulnerability Lets MacOS Users Pull Images from Any Registry

CVE-2025-6694 – LabRedesCefetRJ WeGIA Cross-Site Scripting Vulnerability

Windows 11’s Settings app is getting an AI agent that can configure options on your PC for you

CVE-2025-5478 – Sony XAV-AX8500 Bluetooth SDP Protocol Integer Overflow Remote Code Execution Vulnerability

5 reasons not to “hack back”

CVE-2025-48381 – CVAT Information Disclosure Vulnerability

Related Posts