Vulnerability Database

309,237

Total vulnerabilities in the database

CVE-2025-48461

Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct brute force guessing and account takeover as the session cookies are predictable, potentially allowing the attackers to gain root, admin or user access and reset passwords.

Published: Jun 24, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-48461
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5
AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CWEs:

CWE-341

Affected Software
References

No affected software listed.

https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-061/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo