CVE-2025-3014
Insecure direct object references (IDOR) in NightWolf Penetration Platform
Insecure Direct Object References (IDOR) in access control in Tracking 2.1.4 on NightWolf Penetration Testing allows an attacker to access via manipulating request parameters or object references.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N
Produtos afetados
FPT Software · NightWolf Penetration PlatformQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://bug.report.night-wolf.io/changelogs