ETQ Reliance CG Authentication Bypass via Trailing Space RCE

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

An authentication bypass vulnerability exists in ETQ Reliance on the CG (legacy) platform. The application allowed login as the privileged internal SYSTEM user by manipulating the username field. The SYSTEM account does not require a password, enabling attackers with network access to the login page to obtain elevated access. Once authenticated, an attacker could achieve remote code execution by modifying Jython scripts within the application. This issue was resolved by introducing stricter validation logic to exclude internal accounts from public authentication workflows in version MP-4583.

Basic Information

ID CVE-2025-34143

Source VulnCheck

Published Jul 22, 2025 at 12:31

Modified Jul 22, 2025 at 13:30

Affected Product

Vendor ETQ

Product Reliance CG (legacy)

Version *

Affected Versions ETQ Reliance CG (legacy) *

CWE Classification

CWE-288 CWE-269 CWE-78

References

{
    "lastseen": "",
    "description": "An authentication bypass vulnerability exists in ETQ Reliance on the CG (legacy) platform. The application allowed login as the privileged internal SYSTEM user by manipulating the username field. The SYSTEM account does not require a password, enabling attackers with network access to the login page to obtain elevated access. Once authenticated, an attacker could achieve remote code execution by modifying Jython scripts within the application. This issue was resolved by introducing stricter validation logic to exclude internal accounts from public authentication workflows in version MP-4583.",
    "published": "2025-07-22T12:31:35.570Z",
    "modified": "2025-07-22T13:30:32.106Z",
    "type": "cve",
    "title": "ETQ Reliance CG Authentication Bypass via Trailing Space RCE",
    "source": "VulnCheck",
    "references": "https://www.etq.com/product-overview/\nhttps://www.etq.com/blog/etq-reliance-security-update/\nhttps://slcyber.io/assetnote-security-research-center/how-we-accidentally-discovered-a-remote-code-execution-vulnerability-in-etq-reliance/",
    "id": "CVE-2025-34143",
    "bulletinFamily": "",
    "cwe": [
        "CWE-288",
        "CWE-269",
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "ETQ Reliance CG (legacy) *",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Reliance CG (legacy)",
    "version": "*",
    "vendor": "ETQ",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

ETQ Reliance CG Authentication Bypass via Trailing Space RCE_CVE-2025-34143