Opencode Systems · Opencode Systems Ussd Gateway Oc Release:5 · CVE-2025-65239
**Name of the Vulnerable Software and Affected Versions**
OpenCode Systems USSD Gateway OC Release:5 version 6.13.11
**Description**
A flaw exists in access control within the `/aux1/ocussd/trace` endpoint of OpenCode Systems USSD Gateway OC Release:5. This allows attackers with limited privileges to access server logs. The affected API endpoint is `/aux1/ocussd/trace`.
**Recommendations**
Restrict access to the `/aux1/ocussd/trace` endpoint.