Vulnerability Description
Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "idUsuario" parameter in "/helper/Familia/obtenerFamiliaUsuario" endpoint.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-3574?
CVE-2025-3574 is a documented vulnerability. Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "idUsuario" parameter in "/helper/Familia/obtenerFa...
How severe is CVE-2025-3574?
CVSS scoring is not yet available for CVE-2025-3574. Check NVD for updates.
Is there a patch for CVE-2025-3574?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.