CNNVD-202507-2877 Information
CNNVD ID
CNNVD-202507-2877
Related CVE
- CNNVD Published: 2025-07-22
Description (Chinese)
ETQ Reliance CG是美国ETQ公司的一款质量管理系统。 ETQ Reliance CG存在安全漏洞,该漏洞源于通过操纵用户名字段可以绕过身份验证登录为特权内部SYSTEM用户,可能导致远程代码执行。
Description (English)
ETQ Renewal CG is a quality management system for ETQ in the United States. There is a security loophole in ETQ Reliance CG, which stems from the fact that the user’s name section can be manipulated to bypass the identification login as a privileged internal SYSTEM user, which may result in remote code execution.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
ETQ
Published
2025-07-22
Last Modified
2026-02-24
References
https://www.etq.com/product-overview/ https://www.etq.com/blog/etq-reliance-security-update/ https://slcyber.io/assetnote-security-research-center/how-we-accidentally-discovered-a-remote-code-execution-vulnerability-in-etq-reliance/ https://access.redhat.com/security/cve/cve-2025-34143 https://nvd.nist.gov/vuln/detail/CVE-2025-34143
Patch
https://www.etq.com/blog/etq-reliance-security-update/
Share on: