Vulnerability Description
Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 was discovered to contain an Azure JWT access token exposure. This vulnerability allows authenticated attackers to escalate privileges and access sensitive information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Serosoft | Academia Student Information System | eagler-1.0.118 |
Related Weaknesses (CWE)
References
- https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2024-89640Broken Link
- https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2025-25953Third Party Advisory
- https://github.com/el-viper/cve-research/tree/main/CVEs/CVE-2025-25953
FAQ
What is CVE-2025-25953?
CVE-2025-25953 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 was discovered to contain an Azure JWT access token exposure. This vulnerability allows authenticated attackers to ...
How severe is CVE-2025-25953?
CVE-2025-25953 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-25953?
Check the references section above for vendor advisories and patch information. Affected products include: Serosoft Academia Student Information System.