CVE-2025-34141 Information
Jul 23, 2025
cve
Description
A reflected cross-site scripting (XSS) vulnerability exists in ETQ Reliance CG (legacy) platform within the SQLConverterServlet component. This vulnerability requires user interaction such as clicking a crafted link and may result in execution of unauthorized scripts in the user’s context. The affected servlet was unnecessarily exposed to authenticated users and has since been disabled in version SE.2025.1.
Reference
https://slcyber.io/assetnote-security-research-center/how-we-accidentally-discovered-a-remote-code-execution-vulnerability-in-etq-reliance/ https://www.etq.com/blog/etq-reliance-security-update/ https://www.etq.com/product-overview/
Related CNNVD
CNNVD-202507-2875 (Published: 2025-07-22)
Share on: