Security Advisory

CVE-2025-41346

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-18 10:04:11

Last updated 2026-02-18 12:15:27

Assigner INCIBE

State PUBLISHED

Description

Faulty authorization control in software WinPlus v24.11.27 by Informática del Este that allows another user to be impersonated simply by knowing their numerical ID, meaning that an attacker could compromise another users account, thereby affecting the confidentiality, integrity, and availability of the data stored in the application.

← Browse all CVEs View on cve.org ↗