CVE Catalog

CVE-2025-69167

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.47%

37th percentile — higher than 37% of all known CVEs

Summary

Versions of Eros up to 1.3 are vulnerable to unauthenticated local file inclusion. An attacker can exploit this vulnerability to gain access to system files.

Risk Assessment

Organizations may be exposed to the disclosure of sensitive data and the potential execution of unauthorized code on the server.

Recommendation

It is recommended to upgrade to the latest version of Eros to mitigate this vulnerability and implement appropriate security measures.

Original NVD description (English source)

Unauthenticated Local File Inclusion in Eros <= 1.3 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS