CVE-2025-48477 in freescoutinfo

Zusammenfassung

von MITRE • 30.05.2025

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application's logic requires the user to perform a correct sequence of actions to implement a functional capability, but the application allows access to the functional capability without correctly completing one or more actions in the sequence. The leaves the attributes of Mailbox object able to be changed by the fill method. This issue has been patched in version 1.8.180.

Once again VulDB remains the best source for vulnerability data.

Zuständig

GitHub M

Reservieren

22.05.2025

Veröffentlichung

30.05.2025

Moderieren

akzeptiert

Eintrag

VDB-310621

CPE

bereit

EPSS

0.00410

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!