exploitDog

CVE-2025-9567

Опубликовано: 01 сент. 2025

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

The eHRD developed by Sunnet has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.

Ссылки

https://www.twcert.org.tw/en/cp-139-10357-7de41-2.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-10356-ea431-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sun.net:ehrd_ctms:-:*:*:*:*:*:*:*

EPSS

Процентиль: 12%

0.00039

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-76mj-6wf6-r6fm

CVSS3: 6.1

github

5 месяцев назад

The eHRD developed by Sunnet has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishing attacks.

EPSS

Процентиль: 12%

0.00039

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79