Low severity3.1NVD Advisory· Published Apr 7, 2025· Updated Jun 17, 2026
CVE-2025-3329
CVE-2025-3329
Description
A vulnerability classified as problematic has been found in Consumer Comanda Mobile up to 14.9.3.2/15.0.0.8. This affects an unknown part of the component Restaurant Order Handler. The manipulation of the argument Login/Password leads to cleartext transmission of sensitive information. The attack can only be initiated within the local network. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used.
Affected products
2- Range: <=14.9.3.2, <=15.0.0.8
- Consumer/Comanda Mobilev5Range: 14.9.3.0
Patches
Vulnerability mechanics
References
4- medium.com/@davimouar/from-order-to-exploit-a-deep-dive-into-restaurant-network-security-64aeaf3a6f64nvdExploit
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdPermissions RequiredVDB Entry
News mentions
0No linked articles in our index yet.