← back
CVE-2025-8793

LitmusChaos Litmus resource injection

CVSS 5.3 MEDIUMEPSS 0.4%CWE-99
A vulnerability classified as problematic was found in LitmusChaos Litmus up to 3.19.0. Affected by this vulnerability is an unknown functionality. The manipulation of the argument projectID leads to improper control of resource identifiers. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P
Affected products
LitmusChaos · Litmus

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/MaiqueSilva/VulnDB/blob/main/readme03.mdhttps://vuldb.com/?ctiid.319321https://vuldb.com/?id.319321https://vuldb.com/?submit.625956