exploitDog

GHSA-hrm2-q6r9-x22f

Опубликовано: 26 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs.

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs.

Ссылки

EPSS

Процентиль: 11%

0.00037

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-65239

CVSS3: 4.3

nvd

2 месяца назад

Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13.11 allows attackers with low-level privileges to read server logs.

EPSS

Процентиль: 11%

0.00037

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-284