CVE-2025-48695 | CyberDAVA up to 1.1.19 API ROLE privileges assignment

A vulnerability was found in CyberDAVA up to 1.1.19. It has been classified as critical. Affected is an unknown function of the file /api/v2/users/user//role/ROLE/ of the component API. The manipulation leads to incorrect privilege assignment.

This vulnerability is traded as CVE-2025-48695. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More