Vulnerability Description
Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user input in a web application endpoint. An attacker can supply crafted input that is executed as part of backend database queries. The issue is exploitable without authentication, significantly raising the risk.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Explorance | Blue | < 8.14.9 |
Related Weaknesses (CWE)
References
- https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2026/MNDT-2026Third Party Advisory
- https://online-help.explorance.com/blue/articles/security-advisories-(january-20Vendor Advisory
- https://online-help.explorance.com/blue/articles/security-advisory:-cve-2025-577Vendor Advisory
- https://www.explorance.com/products/blueProduct
FAQ
What is CVE-2025-57792?
CVE-2025-57792 is a vulnerability with a CVSS score of 10.0 (CRITICAL). Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user input in a web application endpoint. An attacker can supply crafted input that ...
How severe is CVE-2025-57792?
CVE-2025-57792 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-57792?
Check the references section above for vendor advisories and patch information. Affected products include: Explorance Blue.