CVE 8.7 HIGH

Vertikal Systems Hospital Manager Backend Services Exposure of Sensitive System Information to an Unauthorized Control Sphere_CVE-2025-54459

October 30, 2025 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

Prior to September 19, 2025, the Hospital Manager Backend Services exposed the ASP.NET tracing endpoint /trace.axd without authentication, allowing a remote attacker to obtain live request traces and sensitive information such as request metadata, session identifiers, authorization headers, server variables, and internal file paths.

AI Analysis

Exposure of sensitive system information due to unauthenticated access to the ASP.NET tracing endpoint

Basic Information

ID CVE-2025-54459

Source icscert

Published Oct 29, 2025 at 21:51

Affected Product

Vendor Vertikal Systems

Product Hospital Manager Backend Services

Affected Versions Vertikal Systems Hospital Manager Backend Services 0

CWE Classification

CWE-497

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor Vertikal Systems

Product Hospital Manager Backend Services

References

www.cisa.gov /news-events/ics-medical-advisories/icsma-25-301-01

{
    "lastseen": "",
    "description": "Prior to September 19, 2025, the Hospital Manager Backend Services exposed the ASP.NET tracing endpoint /trace.axd without authentication, allowing a remote attacker to obtain live request traces and sensitive information such as request metadata, session identifiers, authorization headers, server variables, and internal file paths.",
    "published": "2025-10-29T21:51:34.082Z",
    "modified": "2025-10-29T21:51:34.082Z",
    "type": "cve",
    "title": "Vertikal Systems Hospital Manager Backend Services Exposure of Sensitive System Information to an Unauthorized Control Sphere",
    "source": "icscert",
    "references": "https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-301-01",
    "id": "CVE-2025-54459",
    "bulletinFamily": "",
    "cwe": [
        "CWE-497"
    ],
    "cvelist": null,
    "sourceData": "Vertikal Systems Hospital Manager Backend Services 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Hospital Manager Backend Services",
    "version": "0",
    "vendor": "Vertikal Systems",
    "ai_description": "Exposure of sensitive system information due to unauthenticated access to the ASP.NET tracing endpoint",
    "ai_severity": "High",
    "ai_vendor": "Vertikal Systems",
    "ai_product": "Hospital Manager Backend Services",
    "ai_version": "0",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply