CVE-2025-66424

CVSS v3.1

6.5

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Tryton trytond 6.0 before 7.6.11 does not enforce access rights for data export. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2025-66424

Tryton