Information Disclosure in Phone Number Validation Handler of reggie 1.0 by 1902756969
CVE-2025-0403

Currently unrated

Key Information:

Vendor: 1902756969
Vendor: CVE Published:; 13 January 2025

🔔 Create 1902756969 Vulnerability Alert

What is CVE-2025-0403?

A vulnerability exists in version 1.0 of reggie, specifically within the Phone Number Validation Handler's sendMsg functionality. This issue arises from improper manipulation of the 'code' argument, potentially allowing unauthorized access to sensitive information. The vulnerability can be exploited remotely, making it critical for users to assess their systems and apply mitigation strategies, as public disclosures about the exploit are now available.

References

https://github.com/1902756969/reggie/issues/3

https://github.com/1902756969/reggie/issues/3#issue-27655...

https://vuldb.com/?ctiid.291278

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 13, 2025

JSON