{"vulnerability": "CVE-2025-49651", "sightings": [{"uuid": "bce6acb1-67a8-447f-ac2e-82ca97c771c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49651", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lr76dsbtv72m", "content": "", "creation_timestamp": "2025-06-09T20:03:41.501471Z"}, {"uuid": "9f7b3d1a-c2ee-4aad-ba9d-757531829400", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-49651", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17722", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-49651\n\ud83d\udd25 CVSS Score: 8.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Missing Authorization in Lablup's BackendAI allows attackers to takeover all active sessions; Accessing, stealing, or altering any data accessible in the session. This vulnerability exists in all current versions of BackendAI.\n\ud83d\udccf Published: 2025-06-09T17:25:11.250Z\n\ud83d\udccf Modified: 2025-06-09T17:25:11.250Z\n\ud83d\udd17 References:\n1. https://hiddenlayer.com/sai_security_advisor/2025-05-backendai-49653/", "creation_timestamp": "2025-06-09T18:11:06.000000Z"}]}