216.73.217.139

CVE-2025-40807

· Published 09/12/2025 16:17 · Modified 09/12/2025 18:36

Labels: CVE-2025-40807 2025-12-09CVE-2025-40807CWE-294[email protected]

Essential information

Published
09/12/2025 16:17
Modified
09/12/2025 18:36
Author
Creator
CVSS
5.3 MEDIUM (v3) 5.3 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A vulnerability has been identified in Gridscale X Prepay (All versions < V4.2.1). The affected application is vulnerable to capture-replay of authentication tokens. This could allow an authenticated but already locked-out user to establish still valid user sessions.

NVD status

Status
Undergoing Analysis — CVE is currently being analyzed by NVD staff, this process results in association of reference link tags, CVSS scores, CWE association, and CPE applicability statements.
Source
[email protected]
NVD
View on NVD

References