CVE-2025-42604
Published: 23 April 2025
Summary
CVE-2025-42604 is a medium-severity Debug Messages Revealing Unnecessary Information (CWE-1295) vulnerability in Org (inferred from references). Its CVSS base score is 6.9 (Medium).
Operationally, ranked in the top 29.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-12234
Vulnerability details
This vulnerability exists in Meon KYC solutions due to debug mode is enabled in certain API endpoints. A remote attacker could exploit this vulnerability by accessing certain unauthorized API endpoints leading to detailed error messages as response leading to disclosure…
more
of system related information.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.