216.73.217.139

CVE-2025-66360

· Published 28/11/2025 00:15 · Modified 03/12/2025 19:12

Labels: CVE-2025-66360 2025-11-28CVE-2025-66360CWE-863[email protected]

Essential information

Published
28/11/2025 00:15
Modified
03/12/2025 19:12
Author
Creator
CVSS
6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

An issue was discovered in Logpoint before 7.7.0. An improperly configured access control policy exposes sensitive Logpoint internal service (Redis) information to li-admin users. This can lead to privilege escalation.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
logpoint / siem cpe:2.3:a:logpoint:siem:*:*:*:*:*:*:*:*

References