CVE Catalog

CVE-2025-69132

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.36%

28th percentile — higher than 28% of all known CVEs

Summary

The Corpkit plugin version 1.0.5 and earlier allows exposure of sensitive subscriber data. This vulnerability enables unauthorized users to access confidential information.

Risk Assessment

The risk involves potential leakage of personal subscriber data, which may violate data protection regulations and harm the organization's reputation.

Recommendation

It is recommended to immediately update the Corpkit plugin to the latest available version that fixes this vulnerability.

Original NVD description (English source)

Subscriber Sensitive Data Exposure in Corpkit <= 1.0.5 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS