CVE-2025-53473
published 2025-07-07CVE-2025-53473: Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, unintended…
PriorityP334medium6.9CVSS 4.0
AVNACLATNPRNUINVCNVILVANSCLSILSALEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.27%
17.8th percentile
Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, unintended requests may be sent to internal servers.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nimesa | nimesa_backup_and_recovery | — | — |
| nimesa | nimesa_backup_and_recovery | — | — |
| nimesa | nimesa_backup_and_recovery | — | — |
CVSS provenance
nvdv4.06.9MEDIUMCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
nvdv3.07.3HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
vendor_redhat6.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
From CVEorg collector
vendor_redhat·2025-07-07·CVSS 6.9
CVE-2025-53473 [MEDIUM] CWE-918 From CVEorg collector
From CVEorg collector
Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, unintended requests may be sent to internal servers.
GHSA
GHSA-7m9c-p64g-7pcw: Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, uninten
ghsa_unreviewed·2025-07-07
CVE-2025-53473 [MEDIUM] CWE-918 GHSA-7m9c-p64g-7pcw: Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, uninten
Server-side request forgery (SSRF) vulnerability exists n multiple versions of Nimesa Backup and Recovery, If this vulnerability is exploited, unintended requests may be sent to internal servers.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-07-07
Published