CVE-2025-54768 Information
Jul 30, 2025
cve
Description
An API endpoint that should be limited to web application administrators is hidden from but accessible by lower-level read only web application users. The endpoint can be used to download logs from the appliance configuration exposing sensitive information.
Reference
https://korelogic.com/Resources/Advisories/KL-001-2025-015.txt https://lpar2rrd.com/note800.php
Related CNNVD
CNNVD-202507-3573 (Published: 2025-07-29)
Share on: