- Description
- The IntelliSpace portal application utilizes .NET Remoting for its functionality. The vulnerability arises from the exploitation of port 755 through the "Object Marshalling" technique, which allows an attacker to read internal files without any authentication. This is possible by crafting specific .NET Remoting URLs derived from information enumerated in the client-side configuration files. This issue affects IntelliSpace Portal: 12 and prior.
- Source
- 20705f08-db8b-4497-8f94-7eea62317651
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 7.7
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:Y/R:U/V:C/RE:M/U:Green
- Severity
- HIGH
- 20705f08-db8b-4497-8f94-7eea62317651
- CWE-22
- Hype score
- Not currently trending
🚨 CVE-2025-3424 🔴 HIGH (7.7) 🏢 Philips - IntelliSpace Portal 🏗️ 12 and prior 🔗 https://t.co/qN5XqTZG1r #CyberCron #VulnAlert #InfoSec https://t.co/3KZboU05tw
@cybercronai
9 Apr 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 CVE-2025-3424 🔴 HIGH (7.7) 🏢 Philips - IntelliSpace Portal 🏗️ 12 and prior 🔗 https://t.co/qN5XqTZG1r #CyberCron #VulnAlert #InfoSec https://t.co/2jTgZzjYGq
@cybercronai
7 Apr 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes