CVE-2025-24697

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Feb 3, 2025

CWE ID 862

Summary

CVE-2025-24697 is a critical vulnerability affecting the Realwebcare Image Gallery – Responsive Photo Gallery. The issue lies in the lack of proper authorization checks, which enables unauthorized users to access protected images. This vulnerability arises due to incorrectly configured access control security levels in the software. It is essential to note that versions of the Image Gallery – Responsive Photo Gallery from n/a to 1.0.5 are all impacted by this security flaw. Successful exploitation of this vulnerability can lead to unauthorized access to sensitive images, posing a significant risk to organizations and individuals using the affected software.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database