How severe is CVE-2025-54833?

CVE-2025-54833 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2025-54833

Name: foiaxpress_public_access_link
Author: opexus

5.3MEDIUM

OPEXUS FOIAXpress Public Access Link (PAL) version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections. Unauthenticated remote attackers can more easily brute force passwords.

发布于: 7/31/2025更新于: 9/12/2025

描述

OPEXUS FOIAXpress Public Access Link (PAL) version v11.1.0 allows attackers to bypass account-lockout and CAPTCHA protections. Unauthenticated remote attackers can more easily brute force passwords.

AI分析AI驱动

受影响产品

opexusfoiaxpress_public_access_link

参考资料

https://docs.opexustech.com/docs/foiaxpress/11.12.0/FOIAXpress_Release_notes_11.12.3.0.pdf
Release Notes
https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-25-174-01.json
Product
https://www.cve.org/CVERecord?id=CVE-2025-54833
Third Party Advisory