CVE-2025-8793

LitmusChaos Litmus resource injection

CVSS 5.3 MEDIUMEPSS 0.4%CWE-99

A vulnerability classified as problematic was found in LitmusChaos Litmus up to 3.19.0. Affected by this vulnerability is an unknown functionality. The manipulation of the argument projectID leads to improper control of resource identifiers. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

Produtos afetados

LitmusChaos · Litmus

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/MaiqueSilva/VulnDB/blob/main/readme03.md https://vuldb.com/?ctiid.319321 https://vuldb.com/?id.319321 https://vuldb.com/?submit.625956