SoliClub
CVE-2025-1031
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
2DescriptionCVE.org
Authorization Bypass Through User-Controlled Key vulnerability in Utarit Informatics Services Inc. SoliClub allows Functionality Misuse.
This issue affects SoliClub: from 5.2.4 before 5.3.7.
AnalysisAI
Authorization bypass in Utarit Informatics SoliClub Android application versions 5.2.4 through 5.3.6 allows remote unauthenticated attackers to access or manipulate other users' data by tampering with user-controlled identifiers (IDOR). The flaw enables functionality misuse with high impact on confidentiality (CVSS 7.5), though no public exploit identified at time of analysis and EPSS exploitation probability is very low at 0.04%.
Technical ContextAI
The vulnerability is rooted in CWE-639 (Authorization Bypass Through User-Controlled Key), commonly known as Insecure Direct Object Reference (IDOR). According to the CPE (cpe:2.3:a:utarit:soliclub:*:*:*:*:*:android:*:*), the affected component is the SoliClub Android mobile application developed by Utarit Informatics Services Inc., a Turkish vendor. In this class of weakness, server-side endpoints accept an identifier (such as a user ID, account number, or resource ID) supplied by the client and use it to look up or operate on data without verifying that the authenticated requestor is authorized for that specific object, allowing horizontal privilege escalation between accounts.
RemediationAI
Vendor-released patch: upgrade SoliClub for Android to version 5.3.7 or later, which is the first fixed release per the NVD version range. Refer to the USOM advisory at https://www.usom.gov.tr/bildirim/tr-25-0466 and https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0466 for vendor confirmation. As compensating controls pending mandatory app updates, operators of the backend API should enforce server-side authorization checks that bind every object lookup to the authenticated session's identity rather than trusting client-supplied IDs, and consider rate-limiting or monitoring sequential-ID enumeration patterns at the API gateway; the trade-off of enumeration rate limits is potential false positives for legitimate bulk activity by power users.
Authorization Bypass Through User-Controlled Key, Missing Authorization vulnerability in Utarit Information SoliClub all
Authorization Bypass Through User-Controlled Key vulnerability in Utarit Information SoliClub allows Exploiting Incorrec
Hard-coded credentials in Utarit Informatics SoliClub Android application versions prior to 5.3.7 allow remote unauthent
Hard-coded credentials in Utarit Information Services SoliClub Android app (versions 5.2.4 through 5.3.7) allow remote u
Information disclosure in Utarit Informatics SoliClub Android app versions 5.2.4 through 5.3.6 allows remote unauthentic
Missing authorization controls in the SoliClub Android application (all versions before 5.3.7) allow authenticated low-p
Same technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today