CVE-2025-53473

Summary

Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, unintended requests may be sent to internal servers.

Affected Software

VendorProductVersion RangeStatus
NimesaNimesa Backup and Recoveryprior to v3.0.2025062305affected
NimesaNimesa Backup and Recoveryv2.3affected
NimesaNimesa Backup and Recoveryv2.4affected

Weaknesses

  • CWE-918: Server-side request forgery (SSRF)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References