CVE-2025-11025

Summary

Insertion of Sensitive Information Into Sent Data vulnerability in Vimesoft Information Technologies and Software Inc. Vimesoft Corporate Messaging Platform allows Retrieve Embedded Sensitive Data.

This issue affects Vimesoft Corporate Messaging Platform: from V1.3.0 before V2.0.0.

Affected Software

VendorProductVersion RangeStatus
Vimesoft Information Technologies and Software Inc.Vimesoft Corporate Messaging PlatformV1.3.0 < V2.0.0affected

Weaknesses

  • CWE-201: CWE-201 Insertion of Sensitive Information Into Sent Data

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References