CVE Catalog

CVE-2025-69146

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.47%

37th percentile — higher than 37% of all known CVEs

Summary

Versions of Dom <= 1.24 have an unauthenticated local file inclusion vulnerability, which may lead to the exposure of sensitive data.

Risk Assessment

Organizations may be at risk of data leakage and other attacks if unauthorized users gain access to the system.

Recommendation

It is recommended to upgrade to the latest version of Dom to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Local File Inclusion in Dom <= 1.24 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS