ByteOS Network

NVD Vulnerability Details :

CVE-2025-25953

Modified

Source-cve@mitre.org

Published At-03 Mar, 2025 | 01:15

Updated At-12 Dec, 2025 | 16:15

Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 was discovered to contain an Azure JWT access token exposure. This vulnerability allows authenticated attackers to escalate privileges and access sensitive information.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Type: Secondary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

CPE Matches

serosoft>>academia_student_information_system>>eagler-1.0.118

cpe:2.3:a:serosoft:academia_student_information_system:eagler-1.0.118:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-862	Secondary	134c704f-9b21-4f2e-91b3-4a467353bcc0

CWE ID: CWE-862

Type: Secondary

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

References

Hyperlink	Source	Resource
https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2024-89640	cve@mitre.org	Broken Link
https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2025-25953	cve@mitre.org	Third Party Advisory
https://github.com/el-viper/cve-research/tree/main/CVEs/CVE-2025-25953	cve@mitre.org	N/A

Hyperlink: https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2024-89640

Source: cve@mitre.org

Resource:

Broken Link

Hyperlink: https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2025-25953

Source: cve@mitre.org

Resource:

Third Party Advisory

Hyperlink: https://github.com/el-viper/cve-research/tree/main/CVEs/CVE-2025-25953

Source: cve@mitre.org

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History