CNNVD-202508-603 Information
Aug 06, 2025
cve
CNNVD ID
CNNVD-202508-603
Related CVE
- CNNVD Published: 2025-08-06
Description (Chinese)
Sage DPW是英国Sage公司的一个人力资源系统。 Sage DPW v2024.12.003版本存在安全漏洞,该漏洞源于访问控制不当,可能导致未经授权的访问内置数据库监视器。
Description (English)
Sage DPW is a human resources system of Sage UK. There is a security loophole in version Sage DPW v2024.12.003, which stems from inadequate access controls and may result in unauthorized access to built-in database monitors.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Sage
Published
2025-08-06
Last Modified
2026-02-24
References
https://www.sec4you-pentest.com/schwachstellen/ https://www.sec4you-pentest.com/schwachstelle/sage-dpw-unauthentifizierter-zugriff-adminbereich-db-monitor/ https://access.redhat.com/security/cve/cve-2025-51532
Patch
https://www.sagedpw.at/news/download-2025_06_000/
Share on: