CNNVD-202511-1933 Information

CNNVD ID

CNNVD-202511-1933

Related CVE

CVE-2025-13164

• CNNVD Published: 2025-11-17

Description (Chinese)

Digiwin EasyFlow GP是中国台湾鼎新数智（Digiwin）公司的一个企业流程管理系统。 Digiwin EasyFlow GP存在安全漏洞，该漏洞源于凭证保护不足，可能导致特权远程攻击者获取AD和系统邮件明文凭据。

Description (English)

Digiwin EASYFlow GP is an enterprise process management system for the company Digiwin. There is a security loophole in Digiwin EASYFlow GP, which stems from inadequate document protection, which may lead to privileged remote assailants obtaining AD and system e-mail identification certificates.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

鼎新数智

Published

2025-11-17

Last Modified

2026-02-24

References

https://www.twcert.org.tw/en/cp-139-10504-23f4c-2.html https://www.twcert.org.tw/tw/cp-132-10503-a66fe-1.html

Patch

https://www.digiwin.com/tw