CVE-2025-25382
Published: 10 March 2025
Description
Adversaries may steal monetary resources from targets through extortion, social engineering, technical theft, or other methods aimed at their own financial gain at the expense of the availability of these resources for victims.
Security Summary
CVE-2025-25382 is a vulnerability in the Property Tax Payment Portal of Information Kerala Mission's SANCHAYA v3.0.4, published on 2025-03-10. The issue, tied to CWE-472 (External Control of Assumed-Immutable Web Parameter), enables attackers to arbitrarily modify payment amounts through a crafted request. It carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N), indicating high integrity impact with no confidentiality or availability effects.
Unauthenticated attackers with network access can exploit this vulnerability with low complexity and no user interaction required. By sending a specially crafted request to the portal, they can alter payment amounts, potentially enabling fraudulent transactions such as underpaying property taxes or manipulating financial records in the system.
Advisories reference a GitHub repository at https://github.com/edwin-0990/CVE_ID/blob/main/CVE-2025-25382/README.md for technical details and proof-of-concept, along with the affected portal at https://tax.lsgkerala.gov.in/epayment/QuickPaySearch.php. No specific patches or mitigations are detailed in the provided information.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Vulnerability in public-facing payment portal enables exploitation (T1190) to manipulate transmitted payment data (T1565.002), facilitating financial theft (T1657) via crafted requests.