CVE-2025-40985 in Vision Webinformação

Sumário

de MITRE • 16/07/2025

SQL injection vulnerability in SCATI Vision Web of SCATI Labs from version 4.8 to 7.2. This vulnerability allows an attacker to exfiltrate some data from the database via the ‘login’ parameter in the endpoint ‘/scatevision_web/index.php/loginForm’.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsável

INCIBE

Reservar

16/04/2025

Divulgação

16/07/2025

Moderação

aceite

Entrada

VDB-316555

CPE

pronto

EPSS

0.00328

KEV

não

Atividades

muito baixo

Fontes

Want to know what is going to be exploited?

We predict KEV entries!