CNNVD-202507-2875 Information
CNNVD ID
CNNVD-202507-2875
Related CVE
- CNNVD Published: 2025-07-22
Description (Chinese)
ETQ Reliance CG是美国ETQ公司的一款质量管理系统。 ETQ Reliance CG存在安全漏洞,该漏洞源于SQLConverterServlet组件容易受到反射型跨站脚本攻击,可能导致在用户环境中执行未授权脚本。
Description (English)
ETQ Renewal CG is a quality management system for ETQ in the United States. There is a security loophole in ETQ Reliance CG, which stems from the vulnerability of the SQLConverterServlet component to reflect-type cross-site script attacks, which may lead to the implementation of unauthorized scripts in the user environment.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
ETQ
Published
2025-07-22
Last Modified
2026-02-24
References
https://www.etq.com/product-overview/ https://www.etq.com/blog/etq-reliance-security-update/ https://slcyber.io/assetnote-security-research-center/how-we-accidentally-discovered-a-remote-code-execution-vulnerability-in-etq-reliance/ https://nvd.nist.gov/vuln/detail/CVE-2025-34141 https://access.redhat.com/security/cve/cve-2025-34141
Patch
https://www.etq.com/blog/etq-reliance-security-update/
Share on: