CVE-2025-3535
📋 TL;DR
This vulnerability in shuanx BurpAPIFinder allows remote attackers to cause denial of service by manipulating the BurpApiFinder.db file. It affects users of BurpAPIFinder up to version 2.0.2. The exploit is publicly available and can be launched remotely.
💻 Affected Systems
- shuanx BurpAPIFinder
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Complete service disruption of BurpAPIFinder functionality, potentially affecting security testing workflows that depend on this tool.
Likely Case
Temporary unavailability of BurpAPIFinder, requiring restart or manual intervention to restore functionality.
If Mitigated
Minimal impact with proper network segmentation and access controls limiting exposure to trusted sources only.
🎯 Exploit Status
Exploit details are publicly disclosed in GitHub issues. Remote exploitation is possible without authentication.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Unknown
Vendor Advisory: https://github.com/shuanx/BurpAPIFinder/issues/18
Restart Required: Yes
Instructions:
1. Monitor the GitHub repository for updates. 2. When a patched version is released, download and install it. 3. Restart BurpAPIFinder to apply the fix.
🔧 Temporary Workarounds
Restrict network access
allLimit network exposure of BurpAPIFinder to trusted IP addresses only
File permission hardening
linuxSet restrictive permissions on BurpApiFinder.db file to prevent unauthorized manipulation
chmod 600 BurpApiFinder.db
🧯 If You Can't Patch
- Isolate BurpAPIFinder instances in separate network segments with strict firewall rules
- Implement monitoring for unusual access patterns to BurpApiFinder.db file
🔍 How to Verify
Check if Vulnerable:
Check if BurpAPIFinder version is 2.0.2 or earlier. Examine if BurpApiFinder.db file is accessible over network.Check Version:
Check the application interface or configuration files for version informationVerify Fix Applied:
Verify installation of version newer than 2.0.2 when available. Test that database manipulation no longer causes service disruption.📡 Detection & Monitoring
Log Indicators:
- Unexpected access attempts to BurpApiFinder.db
- BurpAPIFinder service crashes or restarts
Network Indicators:
- Unusual network traffic to BurpAPIFinder port from untrusted sources
SIEM Query:
source="burp*" AND (event="crash" OR event="db_access")