Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
EventPrime Calendar Management Exposes Sensitive System Data
CVE-2026-25389
Summary
A security weakness in EventPrime's calendar management system allows unauthorized users to access sensitive system information. This affects all versions of EventPrime up to 4.2.8.3, which means that any organization using these versions is at risk. To protect your system, update to the latest version of EventPrime as soon as possible.
Original title
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This is...
Original description
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through <= 4.2.8.3.
nvd CVSS3.1
5.3
Vulnerability type
CWE-497
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026