TrustStackSecurity

1 exploit Active since Apr 2025
CVE-2025-27580 NOMISEC HIGH WORKING POC
NIH BRICS <14.0.0-67 - Privilege Escalation
NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 generates predictable tokens (that depend on username, time, and the fixed 7Dl9#dj- string) and thus allows unauthenticated users with a Common Access Card (CAC) to escalate privileges and compromise any account, including administrators.
CVSS 7.5