{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-11T13:21:31.607","vulnerabilities":[{"cve":{"id":"CVE-2025-11195","sourceIdentifier":"cve@rapid7.com","published":"2025-09-30T18:15:49.090","lastModified":"2025-10-08T14:15:51.740","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Rapid7 AppSpider Pro versions below 7.5.021 suffer from a project name validation vulnerability, whereby an attacker can change the project name directly in the configuration file to a name that already exists. This issue stems from a lack of effective verification of the uniqueness of project names when editing them outside the application in affected versions. This vulnerability was remediated in version 7.5.021 of the product."},{"lang":"es","value":"Las versiones de Rapid7 AppSpider Pro anteriores a la 7.5.021 sufren de una vulnerabilidad de validación de nombres de proyecto, mediante la cual un atacante puede cambiar el nombre del proyecto directamente en el archivo de configuración a un nombre que ya existe. Este problema se deriva de una falta de verificación efectiva de la unicidad de los nombres de proyecto al editarlos fuera de la aplicación en las versiones afectadas. Esta vulnerabilidad fue remediada en la versión 7.5.021 del producto."}],"metrics":{"cvssMetricV31":[{"source":"cve@rapid7.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"cve@rapid7.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-345"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-345"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:rapid7:appspider_pro:*:*:*:*:*:*:*:*","versionEndExcluding":"7.5.021","matchCriteriaId":"6B4810BF-FEF3-4E95-B968-B85651369A88"}]}]}],"references":[{"url":"https://docs.rapid7.com/insight/releasenotes-2025sep/#application-security-insightappsec-and-appspider","source":"cve@rapid7.com","tags":["Vendor Advisory"]}]}}]}