CVE-2025-2317829.04.2025, 16:15CWE-923: Improper Restriction of Communication Channel to Intended EndpointsEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST7.6 HIGHNETWORKLOWLOWCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:HINCDCNA7.6 HIGHNETWORKLOWLOWCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:HCISA-ADPADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 21%Common Weakness EnumerationCWE-923 - Improper Restriction of Communication Channel to Intended EndpointsThe software establishes a communication channel to (or from) an endpoint for privileged or protected operations, but it does not properly ensure that it is communicating with the correct endpoint.Referenceshttps://www.gov.il/en/departments/dynamiccollectors/cve_advisories_listing?skip=0