Sensitive Information Exposure in Vimesoft Corporate Messaging Platform
CVE-2025-11025

5.3MEDIUM

Key Information:

Vendor: Vimesoft Information Technologies And Software Inc.
Status: Vimesoft Corporate Messaging Platform
Vendor: CVE Published:; 26 September 2025

🔔 Create Vimesoft Information Technologies And Software Inc. Vulnerability Alert

What is CVE-2025-11025?

The Vimesoft Corporate Messaging Platform is susceptible to an information exposure vulnerability that allows for the retrieval of embedded sensitive data. This issue specifically affects versions ranging from V1.3.0 up to, but not including, V2.0.0. Organizations utilizing these versions could face risks associated with unauthorized access to sensitive transmitted information.

Affected Version(s)

Vimesoft Corporate Messaging Platform V1.3.0

References

https://www.usom.gov.tr/bildirim/tr-25-0300

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 26, 2025
Vulnerability Reserved
Sep 26, 2025

Credit

Berat AKŞİT

Sencer KILIÇ

Berat AKŞİT

JSON