{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T19:39:39.748","vulnerabilities":[{"cve":{"id":"CVE-2025-57793","sourceIdentifier":"mandiant-cve@google.com","published":"2026-01-28T18:16:49.597","lastModified":"2026-06-17T09:43:26.670","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user-supplied input in a web application component. Crafted input can be executed as part of backend database queries. The issue is exploitable without authentication, significantly elevating the risk."},{"lang":"es","value":"Las versiones de Explorance Blue anteriores a la 8.14.9 contienen una vulnerabilidad de inyección SQL causada por una validación insuficiente de la entrada proporcionada por el usuario en un componente de aplicación web. La entrada manipulada puede ejecutarse como parte de las consultas de la base de datos de backend. El problema es explotable sin autenticación, elevando significativamente el riesgo."}],"affected":[{"source":"mandiant-cve@google.com","affectedData":[{"vendor":"Explorance","product":"Blue","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"8.14.9","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":8.6,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.0}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2026-01-28T18:40:52.415447Z","id":"CVE-2025-57793","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"mandiant-cve@google.com","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:explorance:blue:*:*:*:*:*:*:*:*","versionEndExcluding":"8.14.9","matchCriteriaId":"D2AB6583-0303-48FA-B066-9CF5941EFE28"}]}]}],"references":[{"url":"https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2026/MNDT-2026-0002.md","source":"mandiant-cve@google.com","tags":["Third Party Advisory"]},{"url":"https://online-help.explorance.com/blue/articles/security-advisories-(january-2026)","source":"mandiant-cve@google.com","tags":["Vendor Advisory"]},{"url":"https://online-help.explorance.com/blue/articles/security-advisory:-cve-2025-57793","source":"mandiant-cve@google.com","tags":["Vendor Advisory"]},{"url":"https://www.explorance.com/products/blue","source":"mandiant-cve@google.com","tags":["Product"]}]}}]}