CVE-2025-29556

HIGH

ExaGrid EX10 <7.0.1.P08 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-29556. PoCs published by 0xsu3ks.

AI-analyzed exploit summary This PoC demonstrates a privilege escalation vulnerability in ExaGrid EX10 Backup Appliance, allowing a low-privileged user with a valid session cookie to create a Security Officer account via an unauthorized API call.

Description

ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control. Since version 6.3, ExaGrid enforces restrictions preventing users with the Admin role from creating or modifying users with the Security Officer role without approval. However, a flaw in the account creation process allows an attacker to bypass these restrictions via API request manipulation. An attacker with an Admin access can intercept and modify the API request during user creation, altering the parameters to assign the new account to the ExaGrid Security Officers group without the required approval.

Exploits (1)

nomisec WORKING POC
by 0xsu3ks · poc
https://github.com/0xsu3ks/CVE-2025-29556

This PoC demonstrates a privilege escalation vulnerability in ExaGrid EX10 Backup Appliance, allowing a low-privileged user with a valid session cookie to create a Security Officer account via an unauthorized API call.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: ExaGrid EX10 Backup Appliance versions 6.3 to 7.0.1.P08
Auth required
Prerequisites: Valid JSESSIONIDSSO cookie · Site UUID
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Various Sources
https://www.exagrid.com/

Scores

CVSS v3 7.3
EPSS 0.0028
EPSS Percentile 19.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-284
Status published
Published Jul 31, 2025
Tracked Since Feb 18, 2026