CVE-2025-61959 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Prior to September 19, 2025, the Hospital Manager Backend Services returned verbose ASP.NET error pages for invalid WebResource.axd requests, disclosing framewo…
Medium CVSS: 6.9

CVE-2025-61959

Prior to September 19, 2025, the Hospital Manager Backend Services returned verbose ASP.NET error pages for invalid WebResource.axd requests, disclosing framework and ASP.NET version information, stack traces, internal paths, and the insecure configuration 'customErrors mode="Off"', which could have facilitated reconnaissance by unauthenticated attackers.
Vendor
Vertikalsystems
Product
Hospital Manager Backend Services
CWE
CWE-209
Yayın Tarihi
2025-10-29 22:15:40
Güncelleme
2025-11-06 19:20:34
Source Identifier
ics-cert@hq.dhs.gov
KEV Date Added
-

Kategoriler

CWE-209 Hospital Manager Backend Services MEDIUM Vertikalsystems 2025

Referanslar

https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-301-01 https://www.vertikalsystems.com/en/products/pm/contact.php