CVE-2025-26523

Vulnerability Description

This vulnerability exists in RupeeWeb trading platform due to insufficient authorization controls on certain API endpoints handling addition and deletion operations. Successful exploitation of this vulnerability could allow an authenticated remote attacker to modify information belonging to other user accounts.

Related Weaknesses (CWE)

CWE-266

References

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2025-0

FAQ

What is CVE-2025-26523?

CVE-2025-26523 is a documented vulnerability. This vulnerability exists in RupeeWeb trading platform due to insufficient authorization controls on certain API endpoints handling addition and deletion operations. Successful exploitation of this vu...

How severe is CVE-2025-26523?

CVSS scoring is not yet available for CVE-2025-26523. Check NVD for updates.

Is there a patch for CVE-2025-26523?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.