CVE-2025-65784 – This vulnerability allows authenticated attacke... (How to Fix)

Q: What is the severity of CVE-2025-65784?

CVE-2025-65784 has a CVSS score of 6.5 (MEDIUM). This vulnerability allows authenticated attackers with low-level privileges in Hubert Imoveis e Administracao Ltda Hub v2.0 to access other users' information through crafted API requests. It affects all users of the software who have implemented version 1.27.3 without proper access controls.

📋 TL;DR

This vulnerability allows authenticated attackers with low-level privileges in Hubert Imoveis e Administracao Ltda Hub v2.0 to access other users' information through crafted API requests. It affects all users of the software who have implemented version 1.27.3 without proper access controls.

💻 Affected Systems

Products:

Hubert Imoveis e Administracao Ltda Hub v2.0

Versions: 1.27.3

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Requires authenticated access but only low-level privileges are needed.

📦 What is this software?

Hub by Hubert

View all CVEs affecting Hub →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could exfiltrate sensitive user data including personal information, financial details, or proprietary business data, leading to data breaches, regulatory violations, and reputational damage.

🟠

Likely Case

Low-privilege users accessing information of other users within the same organization, potentially exposing internal data and violating privacy policies.

🟢

If Mitigated

With proper access controls and monitoring, impact is limited to attempted unauthorized access that can be detected and blocked.

🌐 Internet-Facing: HIGH

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires authenticated access but is straightforward via API manipulation as documented in the GitHub repository.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: Unknown

Restart Required: No

Instructions:

Check vendor website for security updates. If no patch is available, implement workarounds and monitor for official fixes.

🔧 Temporary Workarounds

Implement API Access Controls

all

Add proper authorization checks to API endpoints to verify users can only access their own data.

Network Segmentation

all

Restrict access to the Hub application to only trusted networks and implement API gateway with rate limiting.

🧯 If You Can't Patch

Implement strict network access controls to limit who can reach the Hub application.
Deploy a web application firewall (WAF) with rules to detect and block suspicious API requests.

🔍 How to Verify

Check if Vulnerable:

Test authenticated API requests with low-privilege accounts attempting to access other users' endpoints. Monitor for successful unauthorized data retrieval.

Check Version:

Check application version in admin panel or configuration files. For web interface, inspect page source or response headers.

Verify Fix Applied:

After implementing controls, repeat the same tests to ensure unauthorized access is blocked and proper error messages are returned.

📡 Detection & Monitoring

Log Indicators:

Multiple failed authorization attempts from single user accounts
API requests accessing user endpoints with mismatched user IDs
Unusual data retrieval patterns from low-privilege accounts

Network Indicators:

Spike in API requests to user data endpoints
Requests with manipulated user ID parameters in URLs or payloads

SIEM Query:

source="hub_app" AND (event_type="api_request" AND user_id!=requested_user_id) OR (status="403" AND count>10)

📊 Metadata

CVE ID: CVE-2025-65784

CVSS v3 Score: 6.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-918

EPSS Score: 0.03% exploit probability (7.4th percentile)

Published: January 13, 2026

Last Updated: February 13, 2026

🔗 References

http://hub.com Not Applicable
http://hubert.com Not Applicable
https://github.com/carlos-artmann/vulnerability-research/tree/main/CVE-2025-65784 Third Party Advisory,Exploit

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-65784, you might also want to check these: