threat
engine
.sh
Back
·
··:··
Home
/
Product
/
rbi restaurant brands international assistant
Product
rbi restaurant brands international assistant
10 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-62651
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 does not implement access control for the bathroom
6.5
MEDIUM
CVE-2025-62650
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 relies on client-side authentication for use of th
8.3
HIGH
CVE-2025-62649
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 relies on client-side authentication for submissio
5.8
MEDIUM
CVE-2025-62648
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 allows remote attackers to adjust Drive Thru speak
6.4
MEDIUM
CVE-2025-62647
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 provides the functionality of returning a JWT that
5.0
MEDIUM
CVE-2025-62646
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 allows remote attackers to review the stored audio
5.0
MEDIUM
CVE-2025-62645
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 allows a remote authenticated attacker to obtain a
9.9
CRITICAL
CVE-2025-62644
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 has a Global Store Directory that shares personal
5.0
MEDIUM
CVE-2025-62643
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 transmits passwords of user accounts in cleartext
3.4
LOW
CVE-2025-62642
<= 2025-09-06
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 has an "Anyone Can Join This Party" signup API tha
5.8
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin