CVE-2025-53473
7.3
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Summary
Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, unintended requests may be sent to internal servers.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Nimesa | Nimesa Backup and Recovery | prior to v3.0.2025062305 | affected |
| Nimesa | Nimesa Backup and Recovery | v2.3 | affected |
| Nimesa | Nimesa Backup and Recovery | v2.4 | affected |
Weaknesses
- CWE-918: Server-side request forgery (SSRF)
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: partial
References
- https://aws.amazon.com/marketplace/seller-profile?id=08fb48d1-5d60-4feb-93c6-c0c219278a2c
- https://jvn.jp/en/jp/JVN88251376/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.