CNNVD-202510-4030 Information
CNNVD ID
CNNVD-202510-4030
Related CVE
- CNNVD Published: 2025-10-29
Description (Chinese)
Grupo Castilla Epsilon RH是西班牙Grupo Castilla公司的一款人力资源管理软件。 Grupo Castilla Epsilon RH存在安全漏洞,该漏洞源于未对路径…/epsilonnet/License/About.aspx实施访问控制,可能导致攻击者获取许可证信息和产品配置信息。
Description (English)
Grupo Castilla Epsilon RH is a human resources management software for Grupo Castilla, Spain. There is a security loophole in Grupo Castilla Epsilon RH, which stems from the lack of access control over the path…/epsilonnet/License/About.aspx, which may lead to the attackers obtaining information on the licence and product configuration.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Grupo Castilla
Published
2025-10-29
Last Modified
2026-02-24
References
https://www.incibe.es/en/incibe-cert/notices/aviso/unprotected-access-parts-application-epsilon-rh-grupo-castilla https://access.redhat.com/security/cve/cve-2025-12461
Patch
https://www.grupocastilla.es/software-rrhh/epsilon-rh/
Share on: