CNNVD-202510-3556 Information

Oct 27, 2025 cve

CNNVD ID

CNNVD-202510-3556

CVE-2025-60291

CNNVD Published: 2025-10-27

Description (Chinese)

enterprise Software eTimeTrackLite Web是印度enterprise Software公司的一个考勤与门禁管理系统。 enterprise Software eTimeTrackLite Web 12.0版本及之前版本存在安全漏洞，该漏洞源于权限控制缺陷，可能导致未经授权的攻击者访问特定路由和修改数据库连接配置。

Description (English)

Enterprise Software eTime TrackLite Web is a time and door-control management system for Indian Enterprise Software. There is a security loophole in version 12.0 and previous versions of interprise Software eTimeTrackLite Web 12.0, which stems from rights control deficiencies that may lead unauthorized assailants to access a specific route and modify the database connection configuration.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

enterprise Software

Published

2025-10-27

Last Modified

2026-02-24

References

https://github.com/M00nBack/CVE_Request/blob/main/eSSL%20Security/eTimeTrackLite.md https://www.esslsecurity.com/ https://access.redhat.com/security/cve/cve-2025-60291

Share on: