CyberRota
← Ana sayfaya dön

CVE-2026-25699

MEDIUM · CVSS 6.1 EPSS %0.41

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-09T09:16:28.913 · Çekilme zamanı: 2026-06-30T12:13:43.427896+00:00

CyberRota Yorumu

Saldırganın giriş yapmış olması gerekebilir.

CVE
CVE-2026-25699
Severity
MEDIUM
CVSS
6.1
EPSS
%0.41
Apache

Orijinal NVD Açıklaması

Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. Timeline-related APIs lacked proper authorization checks, allowing regular authenticated users to access deleted, private, or unapproved content and its revision history. Users are recommended to upgrade to version 2.0.1, which fixes the issue.