CVE-2025-66360

CVSS v4.0

6.9

Vector

AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Logpoint versions prior to 7.7.0

Description An improperly configured access control policy exposes sensitive Logpoint internal service (Redis) information to

li-admin

users. This exposure can lead to privilege escalation.

Recommendations Update to version 7.7.0 or later.

Fix

LPE

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2025-66360

Logpoint