CVE Vulnerabilities

CVE-2025-3773

Exposure of Backup File to an Unauthorized Control Sphere

Published: Jun 26, 2025 | Modified: Jun 26, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

A sensitive information exposure vulnerability in System Information Reporter (SIR) 1.0.3 and prior allows an authenticated non-admin local user to extract sensitive information stored in a registry backup folder.

Weakness

A backup file is stored in a directory or archive that is made accessible to unauthorized actors.

Potential Mitigations

References