CNNVD-202509-3583 Information
Sep 22, 2025
cve
CNNVD ID
CNNVD-202509-3583
Related CVE
- CNNVD Published: 2025-09-22
Description (Chinese)
Profession Fit是德国Profession Fit公司的一个健康与员工福利类应用。 Profession Fit 5.0.99 Build 44910版本存在安全漏洞,该漏洞源于直接请求/api/challenges/id等URL可能导致授权绕过。
Description (English)
Profit Fit is a health and employee welfare application of the German Enterprise Fit. The security gap in version 5.0.99 Build 44910 arises from the possible circumvention of authorizations by URLs such as direct request/api/challenges/id.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Project MONAI
Published
2025-09-22
Last Modified
2026-02-24
References
https://www.profession-fit.de https://github.com/Henkel-CyberVM/CVEs/blob/main/CVE-2025-59797/README.md https://access.redhat.com/security/cve/cve-2025-59797
Share on: