CVE-2025-48741 | StrangeBee TheHive up to 5.2.15/5.3.10/5.4.9 API Endpoint privileges assignment (SB-SEC-ADV-2025-004)

A vulnerability, which was classified as problematic, was found in StrangeBee TheHive up to 5.2.15/5.3.10/5.4.9. Affected is an unknown function of the component API Endpoint. The manipulation leads to incorrect privilege assignment.

This vulnerability is traded as CVE-2025-48741. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More