CVE-2025-3405

4.3 MEDIUM

Authentication Bypass

📋 TL;DR

This vulnerability in FCJ Venture Builder's appclientefiel 3.0.27 allows attackers to manipulate resource identifiers via the ORDER_ID parameter in HTTP GET requests to /rest/cliente/ObterPedido/. This improper control of resource identifiers could enable unauthorized access to data or functionality. Organizations using this specific software version are affected.

💻 Affected Systems

Products:

• FCJ Venture Builder appclientefiel

Versions: 3.0.27

Operating Systems: Unknown

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects the specific HTTP GET Request Handler component at /rest/cliente/ObterPedido/

⚠️ Manual Verification Required

This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.

Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).

🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.

Recommended Actions:

1. Review the CVE details at NVD
2. Check vendor security advisories for your specific version
3. Test if the vulnerability is exploitable in your environment
4. Consider updating to the latest version as a precaution

⚠️ Risk & Real-World Impact

🔴

Worst Case

Unauthorized access to sensitive client order data, potential data leakage, or manipulation of business operations

🟠

Likely Case

Information disclosure of order details or limited unauthorized data access

🟢

If Mitigated

Minimal impact with proper input validation and access controls in place

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit has been publicly disclosed and remote attack is possible

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Contact vendor for updates or consider alternative solutions.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement strict input validation for ORDER_ID parameter to prevent manipulation

Access Restriction

all

Restrict access to /rest/cliente/ObterPedido/ endpoint using firewall rules or web application firewall

🧯 If You Can't Patch

• Implement web application firewall with input validation rules
• Monitor and log all access to the vulnerable endpoint for suspicious activity

🔍 How to Verify

Check if Vulnerable:

Copy

Check if running appclientefiel version 3.0.27 and test ORDER_ID parameter manipulation at /rest/cliente/ObterPedido/

Check Version:

Copy

Check application version in admin panel or configuration files

Verify Fix Applied:

Copy

Test if ORDER_ID manipulation no longer results in improper resource access

📡 Detection & Monitoring

Log Indicators:

• Unusual ORDER_ID parameter values in GET requests to /rest/cliente/ObterPedido/
• Multiple failed attempts with manipulated parameters

Network Indicators:

• HTTP GET requests to /rest/cliente/ObterPedido/ with unusual ORDER_ID patterns

SIEM Query:

Copy

source="web_logs" AND uri="/rest/cliente/ObterPedido/" AND (ORDER_ID contains suspicious_patterns)

📊 Metadata

CVE ID: CVE-2025-3405

CVSS v3 Score: 4.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWE: CWE-99

EPSS Score: 0.15% exploit probability (35.4th percentile)

Published: April 8, 2025

Last Updated: April 8, 2025

🔗 References

• https://drive.google.com/file/d/1yhZiKFX0avpLDsYDlbnmmkTk4XTY8Y2h/view
• https://vuldb.com/?ctiid.303649
• https://vuldb.com/?id.303649
• https://vuldb.com/?submit.544136

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-3405, you might also want to check these:

CVE-2025-43491 9.8

A vulnerability in Poly Lens Desktop for Windows allows local attackers to modify filesystem permiss...

Same vulnerability type (CWE-99)

CVE-2025-0756 9.1

This vulnerability in Hitachi Vantara Pentaho Data Integration & Analytics allows attackers to injec...

Same vulnerability type (CWE-99)

CVE-2024-57971 9.1

This vulnerability in Knowage Server allows attackers to perform JNDI injection attacks by manipulat...

Same vulnerability type (CWE-99)