Incorrect access control in the REST API of Ibexa & Ciril GROUP eZ Platform / Ciril Platform 2.x allows unauthenticated attackers to access sensitive data via enumerating object IDs.
CVE-2025-70363
NONE
EPSS 0.08%
Updated Mar 06, 2026
CVE Details
CVE ID
CVE-2025-70363
Published Date
Mar 06, 2026
Vendor
Not specified
Severity
NONE
Exploit Prediction (EPSS)
Probability of Exploit
0.08%
Likelihood of exploitation in next 30 days
Percentile:
22.6th percentile (higher than 22.6% of all CVEs)
Standard patching cycle
Impact
Minimal impact
Source
View Advisory