CVE-2025-4430

Vulnerability Description

Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 (published on 22nd August 2024).

Related Weaknesses (CWE)

CWE-862

References

https://cert.pl/en/posts/2025/05/CVE-2025-4430/
https://www.gov.pl/web/ezd-rp

FAQ

What is CVE-2025-4430?

CVE-2025-4430 is a documented vulnerability. Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 (published on 22nd August 2024).

How severe is CVE-2025-4430?

CVSS scoring is not yet available for CVE-2025-4430. Check NVD for updates.

Is there a patch for CVE-2025-4430?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.