VDB

CVE-2025-62155

CVE-2025-62155 PUBLISHED CVSS 8.5 HIGH

new-api is vulnerable to SSRF Bypass

EPSS 0.01% · 3.0th percentile

Risk Scores

CVSS v3.1
8.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
EPSS Score
0.01%
3.0th percentile

Affected Products

VendorProductVersions
QuantumNousnew-api< 0.9.6
github.comQuantumNous/new-api0

Timeline

  • Nov 24, 2025 CVE Published
  • Nov 25, 2025 EPSS Score
  • Nov 25, 2025 PoC Published
  • Nov 25, 2025 PoC Published
  • Nov 30, 2025 EPSS Score
  • Dec 4, 2025 EPSS Score
  • Dec 9, 2025 EPSS Score
  • Dec 14, 2025 EPSS Score
  • Dec 17, 2025 CVE Updated
  • Dec 18, 2025 EPSS Score
  • Dec 23, 2025 EPSS Score
  • Dec 28, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›