Security Advisory

CVE-2025-3574

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-15 08:47:46

Last updated 2025-04-15 13:11:09

Assigner INCIBE

State PUBLISHED

Description

Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "idUsuario" parameter in "/helper/Familia/obtenerFamiliaUsuario" endpoint.

← Browse all CVEs View on cve.org ↗