CVE-2025-4922 – Nomad Prefix-Based ACL Policy Vulnerability (Insufficient ACL Resolution)

June 11, 2025

CVE ID : CVE-2025-4922

Published : June 11, 2025, 2:15 p.m. | 3 hours, 14 minutes ago

Description : Nomad Community and Nomad Enterprise (“Nomad”) prefix-based ACL policy lookup can lead to incorrect rule application and shadowing. This vulnerability, identified as CVE-2025-4922, is fixed in Nomad Community Edition 1.10.2 and Nomad Enterprise 1.10.2, 1.9.10, and 1.8.14.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3473 – IBM Security Guardium Privilege Escalation Local Buffer Overflow

Next Article CVE-2025-40914 – Perl CryptX Integer Overflow Vulnerability

Highlights

CVE-2025-50370 – Phpgurukul Medical Card Generation System CSRF Vulnerability

June 27, 2025

CVE ID : CVE-2025-50370

Published : June 27, 2025, 4:15 p.m. | 2 hours, 57 minutes ago

Description : A Cross-Site Request Forgery (CSRF) vulnerability exists in the Inquiry Management functionality /mcgs/admin/readenq.php of the Phpgurukul Medical Card Generation System 1.0. The vulnerable endpoint allows an authenticated admin to delete inquiry records via a simple GET request, without requiring a CSRF token or validating the origin of the request.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Distribution Release: Q4OS 6.1

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

Right way to record and share our Terminal sessions

CVE-2025-4922 – Nomad Prefix-Based ACL Policy Vulnerability (Insufficient ACL Resolution)

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Basic Networking Part 4 — What is Port?

CVE-2025-32458 – Quantenna Wi-Fi Chipset Command Injection Vulnerability

CVE-2025-6753 – Huija BicycleSharingServer SQL Injection Vulnerability

CodeSOD: IsValidToken

CVE-2025-50370 – Phpgurukul Medical Card Generation System CSRF Vulnerability

Windows 11 Insider Beta KB5058496 update adds AI agents to Settings app on eligible PCs

Firefox 138 Released with Long-Awaited Profile Manager

The Unusual Suspect: Git Repos

CVE-2025-4922 – Nomad Prefix-Based ACL Policy Vulnerability (Insufficient ACL Resolution)

Related Posts