{"uuid": "5c632165-231b-4b38-bf11-b77593809123", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-24521", "type": "seen", "source": "https://t.me/cvedetector/19640", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24521 - Apache Device XML External Entity Injection File Download Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-24521 \nPublished : March 5, 2025, 4:15 p.m. | 1\u00a0hour, 2\u00a0minutes ago \nDescription : External XML entity injection allows arbitrary download of files. The   \nscore without least privilege principle violation is as calculated   \nbelow. In combination with other issues it may facilitate further   \ncompromise of the device. Remediation in Version 6.8.0, release date:   \n01-Mar-25. \nSeverity: 4.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-05T18:37:00.000000Z"}