{"uuid": "c27035ef-bce9-42b7-abd7-f3ba6db39472", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27136", "type": "published-proof-of-concept", "source": "https://t.me/information_security_channel/53894", "content": "CVE-2025-27136 \u2013 LocalS3 CreateBucketConfiguration Endpoint XXE Injection\nhttps://www.offsec.com/blog/cve-2025-27136/\n\nDiscover how CVE-2025-27136, a critical XXE vulnerability in LocalS3\u2019s CreateBucketConfiguration endpoint, can be exploited to access sensitive files. Learn how the flaw works and how to mitigate it.\nThe post CVE-2025-27136 \u2013 LocalS3 CreateBucketConfiguration Endpoint XXE Injection (https://www.offsec.com/blog/cve-2025-27136/) appeared first on OffSec (https://www.offsec.com/).", "creation_timestamp": "2025-07-24T15:47:44.000000Z"}