216.73.216.133

CVE-2025-65966

· Published 26/11/2025 19:15 · Modified 05/12/2025 14:05

Labels: CVE-2025-65966 2025-11-26CVE-2025-65966CWE-285[email protected]

Essential information

Published
26/11/2025 19:15
Modified
05/12/2025 14:05
Author
Creator
CVSS
8.8 HIGH (v3) 8.8 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

OneUptime is a solution for monitoring and managing online services. In version 9.0.5598, a low-permission user can create new accounts through a direct API request instead of being restricted to the intended interface. This issue has been patched in version 9.1.0.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
hackerbay / oneuptime cpe:2.3:a:hackerbay:oneuptime:9.0.5598:*:*:*:*:*:*:*

References