CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Lintsinghua: >> Deepaudit >> 3.0.4 Security Vulnerabilities

CVE-2026-25729

DeepAudit is a multi-agent system for code vulnerability discovery. In 3.0.4 and earlier, there is an improper access control vulnerability in the /api/v1/users/ endpoint allows any authenticated user to enumerate all users in the system and retrieve sensitive information including email addresses, phone numbers, full names, and role information.

CVSS Score

5.3

EPSS Score

0.0

Published

2026-02-06

Page 1

Vulnerabilities

Vulnerable Software

Lintsinghua: >> Deepaudit >> 3.0.4 Security Vulnerabilities

Products

Pricing

Contact Us