Eramba

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2025-55462 MEDIUM This Month

A CORS misconfiguration in Eramba Community and Enterprise Editions v3.26.0 allows an attacker-controlled Origin header to be reflected in the Access-Control-Allow-Origin response along with Access-Control-Allow-Credentials: true. [CVSS 6.5 MEDIUM]

Information Disclosure Eramba

NVD

CVSS 3.1

6.5

EPSS

0.0%

CVE-2025-55462

EPSS 0% CVSS 6.5

MEDIUM This Month

A CORS misconfiguration in Eramba Community and Enterprise Editions v3.26.0 allows an attacker-controlled Origin header to be reflected in the Access-Control-Allow-Origin response along with Access-Control-Allow-Credentials: true. [CVSS 6.5 MEDIUM]

Information Disclosure Eramba

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy