What is GHSA-2h27-gcg3-7h2g?

GHSA-2h27-gcg3-7h2g is a security advisory published by GitHub Security Advisories with Medium severity. A vulnerability has been found in Dígitro NGC Explorer 3.44.15 and classified as problematic....

Which CVE IDs does GHSA-2h27-gcg3-7h2g cover?

GHSA-2h27-gcg3-7h2g covers the following CVE IDs: CVE-2025-4527. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-2h27-gcg3-7h2g?

GHSA-2h27-gcg3-7h2g has a CVSS v3 base score of 3.7, published by GitHub Security Advisories.

GHSA-2h27-gcg3-7h2gMediumCVSS 3.7

A vulnerability has been found in Dígitro NGC Explorer 3.44.15 and classified as problematic....

Vendor

GitHub Security Advisories

Published

May 11, 2025

Last Modified

May 27, 2026

🔗 CVE IDs covered (1)

CVE-2025-4527 →

📋 Description

A vulnerability has been found in Dígitro NGC Explorer 3.44.15 and classified as problematic. This vulnerability affects unknown code of the component Password Transmission Handler. The manipulation leads to client-side enforcement of server-side security. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.

🔗 References (10)

https://nvd.nist.gov/vuln/detail/CVE-2025-4527
https://vuldb.com/?ctiid.308272
https://vuldb.com/?id.308272
https://vuldb.com/?submit.565308
https://digitro.com/recomendacao-10-2026-ctir-gov
https://vuldb.com/submit/565308
https://vuldb.com/vuln/308272
https://vuldb.com/vuln/308272/cti
https://www.gov.br/ctir/pt-br/assuntos/alertas-e-recomendacoes/recomendacoes/2026/recomendacao-10-2026
https://github.com/advisories/GHSA-2h27-gcg3-7h2g