216.73.217.86

CVE-2025-57212

· Published 04/12/2025 16:16 · Modified 05/12/2025 22:15

Labels: CVE-2025-57212 2025-12-04CVE-2025-57212CWE-284NVD-CWE-noinfo[email protected]

Essential information

Published
04/12/2025 16:16
Modified
05/12/2025 22:15
Author
Creator
CVSS
7.5 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS metrics

Description

Incorrect access control in the component ApiOrderService.java of platform v1.0.0 allows attackers to access sensitive information via a crafted request.

NVD status

Status
Modified — CVE has been amended by a source (CVE Primary CNA or another CNA). Analysis data supplied by the NVD may be no longer be accurate due to these changes.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
fuyang lipengjun / platform cpe:2.3:a:fuyang_lipengjun:platform:1.0.0:*:*:*:*:*:*:*

References