PT-2025-51993 · Unknown+1 · Freedombox+1

Published

2025-12-18

Updated

2025-12-20

CVE-2025-68462

CVSS v3.1

3.2

Low

Vector

AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Freedombox versions prior to 25.17.1

Description Freedombox versions prior to 25.17.1 do not establish appropriate permissions for the backups-data directory. This allows unauthorized access to database dump files.

Recommendations Update to version 25.17.1 or later.

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2025-68462

Affected Products

Debian

Freedombox

PT-2025-51993 · Unknown+1 · Freedombox+1

CVE-2025-68462

Weakness Enumeration

Related Identifiers

Affected Products

References · 9