CVE-2025-48738 | StrangeBee TheHive up to 5.2.15/5.3.10/5.4.9/5.5.0 Password Reset allocation of resources (ADV-2025-003)

A vulnerability classified as critical was found in StrangeBee TheHive up to 5.2.15/5.3.10/5.4.9/5.5.0. This vulnerability affects unknown code of the component Password Reset Handler. The manipulation leads to allocation of resources.

This vulnerability was named CVE-2025-48738. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More