← back
CVE-2025-27581

CVE-2025-27581

CVSS 4.3 MEDIUMEPSS 0.3%CWE-425
NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 allows users who lack the InET role to access the InET module via direct requests to known endpoints.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected products
NIH · BRICS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://brics.cit.nih.govhttps://github.com/brics-dev/bricshttps://github.com/RoseHacks/Vulnerability.Research/blob/main/CVE-2025-27581/README.md