Bluewave Checkmate
3 CVEs affecting Bluewave Checkmate. Latest disclosed: 2025-05-15. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-47817 | High | 8.8 | 2025-05-10 | In BlueWave Checkmate through 2.0.2 before b387eba, a profile edit request can include a role parameter. |
CVE-2025-47245 | High | 8.1 | 2025-05-04 | In BlueWave Checkmate through 2.0.2 before d4a6072, an invite request can be modified to specify a privileged role. |
CVE-2025-48024 | Medium | 5.0 | 2025-05-15 | In BlueWave Checkmate before 2.1, an authenticated regular user can access sensitive application secrets via the /api/v1/settings endpoint. |