CVE-2025-9062EPSS p11.1%

CVE-2025-9062CVE-2025-9062

Description

Authorization Bypass Through User-Controlled Key vulnerability in MeCODE Informatics and Engineering Services Ltd. Envanty allows Parameter Injection. This issue affects Envanty: before 1.0.6.   NOTE: The vendor was contacted early about this disclosure but did not respond in any way. The vulnerability was learned to be remediated through reporter information and testing.

Scoring

CVSS 7.3 ()
VectorCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS0.21% probability of exploitation · percentile 11.1% · 2026-06-19T12:03:05Z
Last modified2026-06-05

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-10024
CVE
CVE-2025-13004
CVE
CVE-2025-0987
CVE
CVE-2026-7399
CVE
CVE-2025-10912
CVE
CVE-2025-46387
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.