Vulnerability Details CVE-2025-67418
ClipBucket 5.5.2 is affected by an improper access control issue where the product is shipped or deployed with hardcoded default administrative credentials. An unauthenticated remote attacker can log in to the administrative panel using these default credentials, resulting in full administrative control of the application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.4%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2025-67418
-
cpe:2.3:a:oxygenz:clipbucket:5.3
-
cpe:2.3:a:oxygenz:clipbucket:5.3.1
-
cpe:2.3:a:oxygenz:clipbucket:5.4.0
-
cpe:2.3:a:oxygenz:clipbucket:5.4.1
-
cpe:2.3:a:oxygenz:clipbucket:5.5.0
-
cpe:2.3:a:oxygenz:clipbucket:5.5.1
-
cpe:2.3:a:oxygenz:clipbucket:5.5.1-141
-
cpe:2.3:a:oxygenz:clipbucket:5.5.1-200
-
cpe:2.3:a:oxygenz:clipbucket:5.5.1-237
-
cpe:2.3:a:oxygenz:clipbucket:5.5.1-238
-
cpe:2.3:a:oxygenz:clipbucket:5.5.1-239