Vulnerability Description
This vulnerability exists in Meon Bidding Solutions due to improper authorization controls on certain API endpoints for the initiation, modification, or cancellation operations. An authenticated remote attacker could exploit this vulnerability by manipulating parameter in the API request body to gain unauthorized access to other user accounts. Successful exploitation of this vulnerability could allow remote attacker to perform authorized manipulation of data associated with other user accounts.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-42605?
CVE-2025-42605 is a documented vulnerability. This vulnerability exists in Meon Bidding Solutions due to improper authorization controls on certain API endpoints for the initiation, modification, or cancellation operations. An authenticated remot...
How severe is CVE-2025-42605?
CVSS scoring is not yet available for CVE-2025-42605. Check NVD for updates.
Is there a patch for CVE-2025-42605?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.