CVE-2025-48741

Summary

A Broken Access Control vulnerability in StrangeBee TheHive 5.2.0 before 5.2.16, 5.3.0 before 5.3.11, and 5.4.0 before 5.4.10 allows remote, authenticated, and unprivileged users to retrieve alerts, cases, logs, observables, or tasks, regardless of the user's permissions, through a specific API endpoint.

Affected Software

VendorProductVersion RangeStatus
StrangeBeeTheHive5.2.0 < 5.2.16affected
StrangeBeeTheHive5.3.0 < 5.3.11affected
StrangeBeeTheHive5.4.0 < 5.4.10affected

Weaknesses

  • CWE-266: CWE-266 Incorrect Privilege Assignment

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References