CVE-2025-1395 | THREATINT

Description

Generation of Error Message Containing Sensitive Information vulnerability in Codriapp Innovation and Software Technologies Inc. HeyGarson allows Fuzzing for application mapping.This issue affects HeyGarson: through 30012026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

PUBLISHED Reserved 2025-02-17 | Published 2026-01-30 | Updated 2026-01-30 | Assigner TR-CERT

HIGH: 8.2CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Problem types

CWE-209 Generation of Error Message Containing Sensitive Information

Product status

Default status

affected

Any version

affected

Credits

Şahnur Eren ALOĞLU finder

References

www.usom.gov.tr/bildirim/tr-26-0009

cve.org (CVE-2025-1395)

nvd.nist.gov (CVE-2025-1395)

Download JSON