CVE-2025-27581

CVSS 4.3 MEDIUMEPSS 0.3%CWE-425

NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 allows users who lack the InET role to access the InET module via direct requests to known endpoints.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Productos afectados

NIH · BRICS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://brics.cit.nih.gov https://github.com/brics-dev/brics https://github.com/RoseHacks/Vulnerability.Research/blob/main/CVE-2025-27581/README.md