CVE-2025-70614

Published: Mar 5, 2026

Modified: Mar 6, 2026

PUBLISHED

Description

OpenCode Systems OC Messaging / USSD Gateway OC Release 6.32.2 contains a broken access control vulnerability in the web-based control panel allowing authenticated low-privileged attackers to gain to access to arbitrary SMS messages via a crafted company or tenant identifier parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gist.github.com/whiteman0007/e02b8cfd6c67ff1eaaf54fba041582a1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-70614

Description

Affected Products

References