Insufficient Access Control in OpenText Flipper
CVE-2025-8053
1LOW
What is CVE-2025-8053?
An insufficient granularity of access control vulnerability in OpenText Flipper permits low-privilege users to interact with the backend API. This weakness arises from incorrectly configured access control security levels, potentially exposing sensitive operations to unauthorized users. Administrators should review configurations to mitigate risks associated with this issue.
Affected Version(s)
Flipper 3.1.2
References
CVSS V4
Score:
1
Severity:
LOW
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Lockheed Martin Red Team