{"uuid": "3e13cc6e-7c49-43ec-a6c6-18343a1b990b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3424", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10728", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3424\n\ud83d\udd25 CVSS Score: 7.7 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/S:P/AU:Y/R:U/V:C/RE:M/U:Green)\n\ud83d\udd39 Description: The IntelliSpace portal application utilizes .NET\nRemoting for its functionality. The vulnerability arises from the exploitation\nof port 755 through the \"Object Marshalling\" technique, which allows\nan attacker to read internal files without any authentication. This is possible\nby crafting specific .NET Remoting URLs derived from information enumerated in\nthe client-side configuration files.\n\n\n\n\n\n\n\nThis issue affects IntelliSpace Portal: 12 and prior.\n\ud83d\udccf Published: 2025-04-07T15:36:46.060Z\n\ud83d\udccf Modified: 2025-04-07T15:36:46.060Z\n\ud83d\udd17 References:\n1. https://www.cve.org/CVERecord?id=CVE-2025-3424", "creation_timestamp": "2025-04-07T15:45:30.000000Z"}