PT-2025-33843 · Genx Fx+2 · Genx Fx+3
Mouy-Leng
·
Published
2025-08-19
·
Updated
2025-08-24
·
CVE-2025-55306
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
GenX FX (affected versions not specified)
Description:
GenX FX is an IA trading platform focused on forex trading. A flaw in the backend may expose API keys and authentication tokens if environment variables are misconfigured. This could allow unauthorized users to access cloud resources, including Google Cloud, Firebase, and GitHub.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Firebase
Genx Fx
Github
Google Cloud