CVE-2025-56423

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-56423

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-56423.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-56423

Published

2025-11-24T16:15:49.680Z

Modified

2026-03-15T22:52:18.181027Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

An issue in Austrian Academy of Sciences (AW) Austrian Archaeological Institute OpenAtlas v.8.12.0 allows a remote attacker to obtain sensitive information via the login error messages

References

Affected packages

Git / github.com/craws/openatlas

Affected ranges

Type

GIT

Repo

https://github.com/craws/openatlas

Events

Introduced

Fixed

af94fa9bcc781df9ef42f0a40c2f240605387874

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "8.12.1"
        }
    ]
}

Affected versions

3.*

3.0.0

3.1.0

3.10.0

3.11.0

3.11.1

3.12.0

3.13.0

3.14.0

3.14.1

3.15.0

3.16.0

3.17.0

3.17.1

3.18.0

3.18.1

3.19.0

3.2.0

3.2.1

3.20.0

3.20.1

3.3.0

3.3.1

3.4.0

3.4.1

3.5.0

3.6.0

3.6.1

3.6.2

3.6.3

3.7.0

3.8.0

3.9.0

4.*

4.0.0

4.1.0

5.*

5.0.0

5.1.0

5.1.1

5.2.0

5.3.0

5.4.0

5.5.0

5.5.1

5.6.0

5.7.0

5.7.1

5.7.2

6.*

6.0.0

6.0.1

6.1.0

6.2.0

6.2.1

6.3.0

6.4.0

6.4.1

6.5.0

6.5.1

6.5.2

6.6.0

6.6.1

6.6.2

6.6.3

6.6.4

7.*

7.0.0

7.0.1

7.0.2

7.0.3

7.0.4

7.1.0

7.1.1

7.10.0

7.11.0

7.11.1

7.12.0

7.13.0

7.13.1

7.14.0

7.14.1

7.14.2

7.15.0

7.16.0

7.16.1

7.17.0

7.17.1

7.17.2

7.17.3

7.17.4

7.2.0

7.3.0

7.4.0

7.5.0

7.6.0

7.6.1

7.6.2

7.7.0

7.8.0

7.8.1

7.9.0

7.9.1

7.9.2

8.*

8.0.0

8.0.1

8.1.0

8.1.1

8.10.0

8.10.1

8.11.0

8.12.0

8.2.0

8.2.1

8.3.0

8.4.0

8.4.1

8.5.0

8.6.0

8.6.1

8.7.0

8.8.0

8.9.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-56423.json"