PT-2025-49075 · Unknown · Orderservice.Queryobject
Published
2025-12-04
·
Updated
2025-12-05
·
CVE-2025-57213
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
platform version 1.0.0
Description
An issue with access control exists in the
orderService.queryObject component. This allows attackers to access sensitive information by sending a specially crafted request. The affected component is orderService.queryObject.Recommendations
Apply updates to address the access control issue in the
orderService.queryObject component.Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Orderservice.Queryobject