{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T11:29:25.503","vulnerabilities":[{"cve":{"id":"CVE-2025-26485","sourceIdentifier":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158","published":"2025-03-19T16:15:31.257","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in Beta80 Life 1st enables the retrieval of different error messages for failed authentication attempts \n(in case of the usage of a wrong password or a non existent user). The difference in the \nreturned error messages could be used by attackers to understand whether a \ncertain user is registered in the Identity Manager.\n\n\nThis issue affects Life 1st: 1.5.2.14234."},{"lang":"es","value":"La vulnerabilidad \"Exposición de información confidencial a un agente no autorizado\" que afecta a Life 1st Identity Manager (versión Beta80) permite la enumeración de usuarios mediante las API Rest de autenticación. Afectado: Life 1st, versión 1.5.2.14234. Se muestran diferentes mensajes de error en los intentos fallidos de autenticación si se utiliza una contraseña incorrecta o un usuario inexistente. Este problema afecta a Life 1st: versión 1.5.2.14234."}],"metrics":{"cvssMetricV31":[{"source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N","baseScore":5.8,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}]},"weaknesses":[{"source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"references":[{"url":"https://euvd.enisa.europa.eu/vulnerability/CVE-2025-26485","source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158"},{"url":"https://www.cvcn.gov.it/cvcn/cve/CVE-2025-26485","source":"a6d3dc9e-0591-4a13-bce7-0f5b31ff6158"}]}}]}