Опубликовано: 12 нояб. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 9.3
CVSS3: 9.8
Описание
The a+HRD developed by aEnrich has an Authentication Abuse vulnerability, allowing unauthenticated remote attackers to craft administrator access tokens and use them to access the system with elevated privileges.
The a+HRD developed by aEnrich has an Authentication Abuse vulnerability, allowing unauthenticated remote attackers to craft administrator access tokens and use them to access the system with elevated privileges.
EPSS
Процентиль: 60%
0.00392
Низкий
9.3 Critical
CVSS4
9.8 Critical
CVSS3
CVE ID
Дефекты
CWE-1390
Связанные уязвимости
CVSS3: 9.8
nvd
3 месяца назад
The a+HRD developed by aEnrich has an Authentication Abuse vulnerability, allowing unauthenticated remote attackers to craft administrator access tokens and use them to access the system with elevated privileges.
EPSS
Процентиль: 60%
0.00392
Низкий
9.3 Critical
CVSS4
9.8 Critical
CVSS3
CVE ID
Дефекты
CWE-1390