CVE-2025-54551_CVE-2025-54551

4.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Description

Synapse Mobility 8.0, 8.0.1, 8.0.2, 8.1, and 8.1.1 contain a privilege escalation vulnerability through external control of Web parameter. If exploited, a user of the product may escalate the privilege and access data that the user do not have permission to view by altering the parameters of the search function.

Basic Information

ID CVE-2025-54551

Source jpcert

Published Aug 20, 2025 at 04:57

Affected Product

Vendor FUJIFILM Healthcare Americas Corporation

Product Synapse Mobility

Version 8.0

Affected Versions FUJIFILM Healthcare Americas Corporation Synapse Mobility 8.0
FUJIFILM Healthcare Americas Corporation Synapse Mobility 8.0.1
FUJIFILM Healthcare Americas Corporation Synapse Mobility 8.0.2
FUJIFILM Healthcare Americas Corporation Synapse Mobility 8.1
FUJIFILM Healthcare Americas Corporation Synapse Mobility and 8.1.1

CWE Classification

CWE-472

References

{
    "lastseen": "",
    "description": "Synapse Mobility 8.0, 8.0.1, 8.0.2, 8.1, and 8.1.1 contain a privilege escalation vulnerability through external control of Web parameter. If exploited, a user of the product may escalate the privilege and access data that the user do not have permission to view by altering the parameters of the search function.",
    "published": "2025-08-20T04:57:37.466Z",
    "modified": "2025-08-20T04:57:37.466Z",
    "type": "cve",
    "title": "CVE-2025-54551",
    "source": "jpcert",
    "references": "https://healthcaresolutions-us.fujifilm.com/synapse-mobility-vulnerability-notification\nhttps://jvn.jp/en/vu/JVNVU94286093/",
    "id": "CVE-2025-54551",
    "bulletinFamily": "",
    "cwe": [
        "CWE-472"
    ],
    "cvelist": null,
    "sourceData": "FUJIFILM Healthcare Americas Corporation Synapse Mobility 8.0\nFUJIFILM Healthcare Americas Corporation Synapse Mobility 8.0.1\nFUJIFILM Healthcare Americas Corporation Synapse Mobility 8.0.2\nFUJIFILM Healthcare Americas Corporation Synapse Mobility 8.1\nFUJIFILM Healthcare Americas Corporation Synapse Mobility and 8.1.1",
    "sourceHref": "",
    "cvss": {
        "score": 4.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Synapse Mobility",
    "version": "8.0",
    "vendor": "FUJIFILM Healthcare Americas Corporation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}