PT-2025-40882 · Unknown · Logo Cloud
Berat Arslan
·
Published
2025-10-06
·
Updated
2025-10-06
·
CVE-2025-0606
CVSS v3.1
6.0
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
Logo Cloud versions prior to 0.67
Description
An authorization bypass exists in Logo Cloud due to a user-controlled key issue. This allows for forceful browsing and exposure of resources. The issue involves bypassing intended access controls through manipulation of keys.
Recommendations
Update Logo Cloud to version 0.67 or later.
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Logo Cloud