CVE-2025-34293

GN4 Publishing System Insecure Direct Object Reference (IDOR) Information Disclosure

CVSS 8.6 HIGHEPSS 0.4%CWE-639

Vexday Risk Score

21Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS 8.6EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

24 oct 2025Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

GN4 Publishing System versions prior to 2.6 contain an insecure direct object reference (IDOR) vulnerability via the API. Authenticated requests to the API's object endpoints allow an authenticated user to request arbitrary user IDs and receive sensitive account data for those users, including the stored password and the account's security question and answer. The exposed recovery data and encrypted password may be used to reset or take over the target account.

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Productos afectados

Naviga Global / Miles 33 · GN4 Publishing System

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://nne.navigacloud.com/GN4Help/gn4_introduction_to_gn4.htm https://www.miles33.com/news/news/5955/naviga--miles-33--acquisition.html https://www.miles33.com/section/14/gn4 https://www.vulncheck.com/advisories/gn4-publishing-system-idor-information-disclosure