CVE-2025-54765 — MEDIUM (5.3)

Q: How severe is CVE-2025-54765?

CVE-2025-54765 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-54765?

Check the references section above for vendor advisories and patch information. Affected products include: Xorux Xormon.

Vulnerability Description

An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to import the appliance configuration, allowing an attacker to control the configuration of the appliance, to include granting themselves administrative level permissions.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Xorux	Xormon	<= 1.8.0

Related Weaknesses (CWE)

CWE-648

References

https://korelogic.com/Resources/Advisories/KL-001-2025-013.txtExploitThird Party Advisory
https://xormon.com/note190.phpRelease Notes
http://seclists.org/fulldisclosure/2025/Jul/16

FAQ

What is CVE-2025-54765?

CVE-2025-54765 is a vulnerability with a CVSS score of 5.3 (MEDIUM). An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to import the applianc...

How severe is CVE-2025-54765?

CVE-2025-54765 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-54765?

Check the references section above for vendor advisories and patch information. Affected products include: Xorux Xormon.