CVE-2025-22695

Summary

CVE-2025-22695 is an authorization bypass vulnerability affecting Nirweb support versions from n/a to 3.0.3. Maliciously crafted user-controlled keys can manipulate access controls, allowing unauthorized users to gain elevated privileges and execute unintended functions. This poses a significant risk to system security and data confidentiality. Users are urged to update to the latest version of Nirweb support to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.