CVE-2025-47226
published 2025-05-02CVE-2025-47226: Grokability Snipe-IT before 8.1.0 has incorrect authorization for accessing asset information.
PriorityP419low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
EXPLOIT
EPSS
1.14%
62.7th percentile
Grokability Snipe-IT before 8.1.0 has incorrect authorization for accessing asset information.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| snipe | snipe-it | >= 0 < 8.1.0 | 8.1.0 |
| snipeitapp | snipe-it | < 8.1.0 | 8.1.0 |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Grokability Snipe-IT has incorrect authorization for accessing asset information
ghsa·2025-05-02
CVE-2025-47226 [MEDIUM] CWE-425 Grokability Snipe-IT has incorrect authorization for accessing asset information
Grokability Snipe-IT has incorrect authorization for accessing asset information
Grokability Snipe-IT before 8.1.0 has incorrect authorization for accessing asset information.
OSV
Grokability Snipe-IT has incorrect authorization for accessing asset information
osv·2025-05-02
CVE-2025-47226 [MEDIUM] Grokability Snipe-IT has incorrect authorization for accessing asset information
Grokability Snipe-IT has incorrect authorization for accessing asset information
Grokability Snipe-IT before 8.1.0 has incorrect authorization for accessing asset information.
No detection rules found.
No writeups or analysis indexed.
2025-05-02
Published