CVE-2025-56449 | Obsidian Scheduler up to 6.3.0 REST API improper authentication

September 29, 2025 Yanac

A vulnerability classified as critical was found in Obsidian Scheduler up to 6.3.0. This issue affects some unknown processing of the component REST API. Executing manipulation can lead to improper authentication.

This vulnerability is tracked as CVE-2025-56449. The attack is only possible within the local network. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-36351 | IBM License Metric Tool up to 9.2.40 REST API Interface access control
CVE-2025-57516 | PublicCMS 5.202506.a/5.202506.b backupDB.bat DATABASE/USERNAME/PASSWORD os command injection (Issue 97)