PT-2025-11279 · Openpanel · Openpanel

Published

2025-03-14

·

Updated

2025-03-14

·

CVE-2025-25872

CVSS v3.1

5.5

Medium

VectorAV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions: Open Panel version 0.3.4
Description: The issue allows a remote attacker to escalate privileges via the Fix Permissions function.
Recommendations: For Open Panel version 0.3.4, consider disabling the Fix Permissions function until a patch is available.

Exploit

Fix

LPE

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2025-25872

Affected Products

Openpanel