CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-51532

Incorrect access control in Sage DPW 2024_12_004 and earlier allows unauthorized attackers to access the built-in Database Monitor via a crafted request. The vendor has stated that the issue is fixed in 2025_06_000, released in June 2025.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.4%

CVSS Severity

CVSS v3 Score 7.5

References

https://www.sec4you-pentest.com/schwachstelle/sage-dpw-unauthentifizierter-zugriff-adminbereich-db-monitor/
https://www.sec4you-pentest.com/schwachstellen/

Products affected by CVE-2025-51532

Sagedpw » Sage Dpw » Version: 2020_06_000

cpe:2.3:a:sagedpw:sage_dpw:2020_06_000
Sagedpw » Sage Dpw » Version: 2020_06_001

cpe:2.3:a:sagedpw:sage_dpw:2020_06_001
Sagedpw » Sage Dpw » Version: 2020_06_002

cpe:2.3:a:sagedpw:sage_dpw:2020_06_002

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-51532

Products

Pricing

Contact Us