CVE-2025-24600

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jan 27, 2025

CWE ID 862

Summary

CVE-2025-24600 is a security vulnerability affecting the David F. Carr RSVPMarker software version 11.4.5 and below. This issue involves a missing authorization control, which allows unauthorized access to certain functionalities. An attacker could exploit this vulnerability to alter or access data without proper authorization, potentially leading to data breaches or other malicious activities. Organizations using RSVPMarker are advised to update to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

WordPress

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2umtAu
https://www.cve.org/CVERecord?id=CVE-2025-24600
https://nvd.nist.gov/vuln/detail/CVE-2025-24600

Back to Vulnerability Database

CVE-2025-24600

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations