CVE-2025-50240
Severity CVSS v4.0:
Pending analysis
Type:
CWE-89
SQL Injection
Publication date:
17/07/2025
Last modified:
18/07/2025
Description
nbcio-boot v1.0.3 was discovered to contain a SQL injection vulnerability via the userIds parameter at /sys/user/deleteRecycleBin.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL