CVE-2025-27419 — HIGH (7.5)

Q: How severe is CVE-2025-27419?

CVE-2025-27419 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-27419?

Check the references section above for vendor advisories and patch information. Affected products include: Wegia Wegia.

Vulnerability Description

WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Denial of Service (DoS) vulnerability exists in WeGIA. This vulnerability allows any unauthenticated user to cause the server to become unresponsive by performing aggressive spidering. The vulnerability is caused by recursive crawling of dynamically generated URLs and insufficient handling of large volumes of requests. This vulnerability is fixed in 3.2.16.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Wegia	Wegia	< 3.2.16

Related Weaknesses (CWE)

CWE-770

References

FAQ

What is CVE-2025-27419?

CVE-2025-27419 is a vulnerability with a CVSS score of 7.5 (HIGH). WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Denial of Service (DoS) vulnerability exists in WeGIA. This vulnerability allows any unauthenticated u...

How severe is CVE-2025-27419?

CVE-2025-27419 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-27419?

Check the references section above for vendor advisories and patch information. Affected products include: Wegia Wegia.