CVE-2025-14882

Vulnerability Description

An API endpoint allowed access to sensitive files from other users by knowing the UUID of the file that were not intended to be accessible by UUID only.

Related Weaknesses (CWE)

CWE-639

References

https://pretix.eu/about/en/blog/20251218-release-2025-10-1/

FAQ

What is CVE-2025-14882?

CVE-2025-14882 is a documented vulnerability. An API endpoint allowed access to sensitive files from other users by knowing the UUID of the file that were not intended to be accessible by UUID only.

How severe is CVE-2025-14882?

CVSS scoring is not yet available for CVE-2025-14882. Check NVD for updates.

Is there a patch for CVE-2025-14882?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.