How severe is CVE-2025-54833?

CVE-2025-54833 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2025-54833

Name: foiaxpress_public_access_link
Author: opexus

5.3MEDIUM

OPEXUS FOIAXpress Public Access Link (PAL) version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections. Unauthenticated remote attackers can more easily brute force passwords.

Publicado: 7/31/2025Actualizado: 9/12/2025

Descripción

OPEXUS FOIAXpress Public Access Link (PAL) version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections. Unauthenticated remote attackers can more easily brute force passwords.

Análisis IAImpulsado por IA

Productos Afectados

opexusfoiaxpress_public_access_link

Referencias

https://docs.opexustech.com/docs/foiaxpress/11.12.0/FOIAXpress_Release_notes_11.12.3.0.pdf
Release Notes
https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-174-01.json
Product
https://www.cve.org/CVERecord?id=CVE-2025-54833
Third Party Advisory