{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-61166", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-06T19:31:38.527Z", "dateReserved": "2025-09-26T00:00:00.000Z", "datePublished": "2026-04-06T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-06T17:13:42.365Z"}, "descriptions": [{"lang": "en", "value": "An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://linkedin.com/in/thakur-nikhil"}, {"url": "https://medium.com/@rajput.thakur/malicious-open-redirection-cve-2025-61166-bf5d708cd241"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-601", "lang": "en", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')"}]}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-06T19:30:53.616812Z", "id": "CVE-2025-61166", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-06T19:31:38.527Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-61166", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-06T19:30:53.616812Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-601", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-06T19:29:36.282Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://linkedin.com/in/thakur-nikhil"}, {"url": "https://medium.com/@rajput.thakur/malicious-open-redirection-cve-2025-61166-bf5d708cd241"}], "descriptions": [{"lang": "en", "value": "An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-06T17:13:42.365Z"}}}, "cveMetadata": {"cveId": "CVE-2025-61166", "state": "PUBLISHED", "dateUpdated": "2026-04-06T19:31:38.527Z", "dateReserved": "2025-09-26T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-06T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ascertia:signinghub:8.6.8:*:*:*:*:*:*:*", "matchCriteriaId": "283658A8-3C4B-435F-9CAD-89CFD8DD7622", "vulnerable": true}, {"criteria": "cpe:2.3:a:ascertia:signinghub:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "AEF66392-2606-4208-85FF-0C8AEB806AC0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a malicious site via a crafted URL."}], "id": "CVE-2025-61166", "lastModified": "2026-04-10T18:40:32.187", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-06T18:16:41.070", "references": [{"source": "cve@mitre.org", "tags": ["Not Applicable"], "url": "https://linkedin.com/in/thakur-nikhil"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://medium.com/@rajput.thakur/malicious-open-redirection-cve-2025-61166-bf5d708cd241"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-601"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,10.0]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "signinghub_user", "vendor": "ascertia"}], "analysis": {"en": {"generated_at": "2026-04-10T19:29:30.246117+00:00", "value": {"mitigation_remediation": ["Identify whether your deployment runs Ascertia SigningHub User 10.0 or 8.6.8.", "Apply any available vendor patch or upgrade to the latest stable version that removes the redirect flaw.", "If a patch is unavailable, configure the application to reject or validate redirect URLs, limiting redirects to trusted domains.", "Monitor for suspicious redirect activity and train users to be cautious of unexpected URLs.", "Contact Ascertia support for guidance if the issue persists."], "summary": {"action": "Assess Impact", "impact": "Open Redirect"}, "threat_synthesis": {"affected_systems": "The affected product is Ascertia SigningHub User, specifically version 10.0 and also version 8.6.8 as indicated by the CPE entries. No other vendors or products are listed.", "description_and_impact": "This vulnerability is an open redirect in Ascertia SigningHub User v10.0 that allows attackers to craft URLs that redirect users to malicious destinations. The impact is primarily phishing or drive\u2011by attacks, potentially compromising user credentials or delivering malware. It represents a CWE\u2011601 misuse of redirection logic.", "risk_and_exploitability": "The CVSS score is 6.1, indicating medium severity, while the EPSS score is below 1%, suggesting low exploitation probability. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires an attacker to entice a user to click a maliciously crafted link; once the link is clicked, the user is redirected to a target site controlled by the attacker. The attack vector is remote via a crafted URL that the user follows."}}}}, "created": "2026-04-06T21:47:40.812626+00:00", "title": "Open Redirect in Ascertia SigningHub User v10.0", "updated": "2026-04-13T14:27:48.241153+00:00", "vendors": ["ascertia", "ascertia$PRODUCT$signinghub_user"]}