{"vulnerability": "CVE-2025-21618", "sightings": [{"uuid": "83ca0d1d-dfdd-417e-a81a-3ee024ba5cea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21618", "type": "seen", "source": "https://t.me/cvedetector/14373", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-21618 - NiceGUI Incognito Mode Session Persistence Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-21618 \nPublished : Jan. 6, 2025, 5:15 p.m. | 43\u00a0minutes ago \nDescription : NiceGUI is an easy-to-use, Python-based UI framework. Prior to 2.9.1, authenticating with NiceGUI logged in the user for all browsers, including browsers in incognito mode. This vulnerability is fixed in 2.9.1. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-06T19:26:26.000000Z"}, {"uuid": "6a18282a-9748-43be-bdeb-6f4e4cd9d1dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21618", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/178", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-v6jv-p6r8-j78w\n\ud83d\udd17 Aliases: CVE-2025-21618\n\ud83d\udd39 Details: ### Summary\nOnce a user logins to one browser, all other browsers are logged in without entering password. Even incognito mode.\n\n### Impact\nhigh\n\ud83d\udd22 Severity: CVSS_V3: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\n\ud83d\uddd3\ufe0f Modified: 2025-01-06T16:31:16Z\n\ud83d\uddd3\ufe0f Published: 2025-01-06T16:31:16Z\n\ud83c\udff7\ufe0f CWE IDs: CWE-287\n\ud83d\udd17 References:\n1. https://github.com/zauberzeug/nicegui/security/advisories/GHSA-v6jv-p6r8-j8w\n2. https://github.com/zauberzeug/nicegui/commit/1621a4ba6a0666b8094362d36623551e651adc1\n3. https://github.com/zauberzeug/nicegui", "creation_timestamp": "2025-01-06T16:37:36.000000Z"}, {"uuid": "a990ac56-dcd6-4f9c-b22b-6fbdc3536dab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21618", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113782380555612442", "content": "", "creation_timestamp": "2025-01-06T16:35:44.572012Z"}, {"uuid": "531d8cd5-32dd-4471-bca7-ec0dafb30141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-21618", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf3n7mqsqn2f", "content": "", "creation_timestamp": "2025-01-06T17:16:49.162263Z"}]}