CVE Catalog

CVE-2025-65854

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.42%

34th percentile - higher than 34% of all known CVEs

Summary

Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allow attackers to execute arbitrary commands and perform a full account takeover.

Risk Assessment

The risk for the organization includes unauthorized code execution and full account takeover, potentially leading to breaches of system confidentiality and integrity.

Recommendation

It is recommended to immediately update MineAdmin to the latest version and review and tighten permissions for the scheduled tasks feature.

Original NVD description (English source)

Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and execute a full account takeover.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS