Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
6DescriptionCVE.org
An Insecure Direct Object Reference (IDOR) vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/framesSelectionNetworks.asp.
AnalysisAI
CVE-2025-40659 is an Insecure Direct Object Reference (IDOR) vulnerability in DM Corporative CMS that allows unauthenticated attackers to bypass access controls and view the private administrative area by manipulating the 'option' parameter (values 0, 1, or 2) in the /administer/selectionnode/framesSelectionNetworks.asp endpoint. This high-severity vulnerability (CVSS 7.5) has a high confidentiality impact but does not enable data modification or service disruption. No active exploitation in the wild (KEV) or public proof-of-concept has been confirmed in available intelligence, but the vulnerability's simplicity and unauthenticated attack vector make it a significant priority for affected organizations.
Technical ContextAI
The vulnerability exists in DM Corporative CMS's administrative interface, specifically in the /administer/selectionnode/framesSelectionNetworks.asp file, which is an Active Server Pages (ASP) application component. The root cause is classified under CWE-639 (Authorization Bypass Through User-Controlled Key), a variant of authorization bypass that occurs when application logic depends on user-supplied parameters to determine access control decisions without proper server-side validation. The 'option' parameter appears to be an enumeration controlling which administrative frames or network selection views are rendered; by manipulating this parameter, attackers can access sensitive administrative functions that should require proper authentication and authorization. The vulnerability is a direct object reference vulnerability because the application directly uses client-supplied identifiers (option values 0, 1, 2) to reference backend objects or views without verifying the requesting user has legitimate access to those resources.
RemediationAI
IMMEDIATE ACTIONS: (1) Restrict network access to the /administer/ path using firewall rules, WAF, or web server configuration to allow only trusted administrative IPs. (2) Implement HTTP Basic Authentication or IP whitelisting at the web server level for all /administer/ endpoints. PATCH: Contact DM Corporative for vendor-released security patches addressing this IDOR vulnerability. Apply patches immediately upon release to all affected CMS instances. WORKAROUNDS (if patch unavailable): (3) Disable or rename the /administer/selectionnode/framesSelectionNetworks.asp file if the functionality is not required. (4) Implement a reverse proxy with request filtering to reject requests to this endpoint from unauthenticated sources. (5) Deploy a Web Application Firewall (WAF) rule blocking requests to framesSelectionNetworks.asp that do not originate from authorized administrative networks. VERIFICATION: After remediation, verify that unauthenticated requests to /administer/selectionnode/framesSelectionNetworks.asp?option=0 (or 1, 2) are denied and return HTTP 403 or redirect to login.
More in Dm Corporative Cms
View allCritical unauthenticated SQL injection vulnerability in DM Corporative CMS affecting the /modules/forms/collectform.asp
Critical SQL injection vulnerability in DM Corporative CMS that allows unauthenticated remote attackers to execute arbit
Critical SQL injection vulnerability in DM Corporative CMS affecting the /antcatalogue.asp endpoint's 'name' parameter,
A critical SQL injection vulnerability (CVE-2025-40654) exists in DM Corporative CMS affecting the /antbuspre.asp endpoi
CVE-2025-40662 is an absolute path disclosure vulnerability in DM Corporative CMS that exposes sensitive filesystem info
CVE-2025-40661 is an Insecure Direct Object Reference (IDOR) vulnerability in DM Corporative CMS that allows unauthentic
CVE-2025-40660 is a security vulnerability (CVSS 7.5) that allows an attacker. High severity vulnerability requiring pro
CVE-2025-40658 is an Insecure Direct Object Reference (IDOR) vulnerability in DM Corporative CMS that allows unauthentic
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-17650