Exposure of Sensitive Information in IQ-Support by IQ Service International
CVE-2025-13160

6.9MEDIUM

Key Information:

Vendor: Iq Service International
Status: Iq-support
Vendor: CVE Published:; 14 November 2025

🔔 Create Iq Service International Vulnerability Alert

What is CVE-2025-13160?

IQ-Support, developed by IQ Service International, is susceptible to a vulnerability that permits unauthenticated remote attackers to gain access to specific APIs. This exposure enables the retrieval of sensitive information from within the internal network, creating potential risks for data confidentiality and integrity.

Affected Version(s)

IQ-Support 1.0

References

https://www.twcert.org.tw/en/cp-139-10502-11c6d-2.html

third-party-advisory

https://www.twcert.org.tw/tw/cp-132-10501-a25a6-1.html

third-party-advisory

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2025
Vulnerability Reserved
Nov 14, 2025

JSON