CVE-2025-14881

Vulnerability Description

Multiple API endpoints allowed access to sensitive files from other users by knowing the UUID of the file that were not intended to be accessible by UUID only.

Related Weaknesses (CWE)

CWE-639

References

https://pretix.eu/about/en/blog/20251218-release-2025-10-1/

FAQ

What is CVE-2025-14881?

CVE-2025-14881 is a documented vulnerability. Multiple API endpoints allowed access to sensitive files from other users by knowing the UUID of the file that were not intended to be accessible by UUID only.

How severe is CVE-2025-14881?

CVSS scoring is not yet available for CVE-2025-14881. Check NVD for updates.

Is there a patch for CVE-2025-14881?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.