{"uuid": "6a18282a-9748-43be-bdeb-6f4e4cd9d1dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21618", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/178", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-v6jv-p6r8-j78w\n\ud83d\udd17 Aliases: CVE-2025-21618\n\ud83d\udd39 Details: ### Summary\nOnce a user logins to one browser, all other browsers are logged in without entering password. Even incognito mode.\n\n### Impact\nhigh\n\ud83d\udd22 Severity: CVSS_V3: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\n\ud83d\uddd3\ufe0f Modified: 2025-01-06T16:31:16Z\n\ud83d\uddd3\ufe0f Published: 2025-01-06T16:31:16Z\n\ud83c\udff7\ufe0f CWE IDs: CWE-287\n\ud83d\udd17 References:\n1. https://github.com/zauberzeug/nicegui/security/advisories/GHSA-v6jv-p6r8-j8w\n2. https://github.com/zauberzeug/nicegui/commit/1621a4ba6a0666b8094362d36623551e651adc1\n3. https://github.com/zauberzeug/nicegui", "creation_timestamp": "2025-01-06T16:37:36.000000Z"}