CVE Catalog

CVE-2025-64637

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.24%

15th percentile — higher than 15% of all known CVEs

Summary

In Auros Core versions up to and including 5.3.1, there is an unauthenticated content injection vulnerability. An attacker without authentication can modify application content.

Risk Assessment

The risk involves an attacker being able to inject malicious content, potentially leading to data theft, phishing, or reputational damage to the organization.

Recommendation

Immediately update Auros Core to a version later than 5.3.1 where the vulnerability is patched.

Original NVD description (English source)

Unauthenticated Content Injection in Auros Core <= 5.3.1 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS