CVE-2025-27581

Published Apr 24, 2025

Last updated 2 months ago

CVSS medium 4.3

Overview

Description: NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 allows users who lack the InET role to access the InET module via direct requests to known endpoints.
Source: cve@mitre.org
NVD status: Awaiting Analysis

Risk scores

CVSS 3.1

Type: Secondary
Base score: 4.3
Impact score: 1.4
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Severity: MEDIUM

Weaknesses

cve@mitre.org: CWE-425

Hype score: Not currently trending

CVE-2025-27581 NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 allows users who lack the InET role to access the InET module via direct requests t… https://t.co/QJQx0KA4Wc
@CVEnew
23 Apr 2025
747 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes

References

Sources include official advisories and independent security research.