216.73.217.139

CVE-2025-12874

· Published 19/12/2025 20:15 · Modified 23/12/2025 14:52

Labels: CVE-2025-12874 2025-12-1957dba5dd-1a03-47f6-8b36-e84e47d335d8CVE-2025-12874

Essential information

Published
19/12/2025 20:15
Modified
23/12/2025 14:52
Author
Creator
CVSS
6.3 MEDIUM (v3) 6.3 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in Quest Coexistence Manager for Notes (Free/Busy Connector modules) allows HTTP Request Smuggling via the Content-Length-Transfer-Encoding (CL.TE) attack vector. This could allow an attacker to bypass access controls, poison web caches, hijack sessions, or trigger unintended internal requests. This issue affects Coexistence Manager for Notes 3.8.2045. Other versions may also be affected.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
57dba5dd-1a03-47f6-8b36-e84e47d335d8
NVD
View on NVD

References