CVE-2025-3850
CVSS 3.1 Score 3.7 of 10 (low)
Details
Published Apr 22, 2025
Updated: Apr 23, 2025
CWE ID 287
Summary
CVE-2025-3850 is a recently identified vulnerability in the YXJ2018 SpringBoot-Vue-OnlineExam 1.0 software. This issue poses a risk due to improper authentication processing within the component API. An attacker can exploit this vulnerability remotely, making it a significant concern. The complexity of an attack is relatively high, and the exploitation is known to be difficult, but the exploit has been made public, increasing the potential threat to affected systems.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.