Sunnet｜eHRD CTMS – Arbitrary File Reading through Path Traversal

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

The eHRD CTMS developed by Sunnet has an Arbitrary File Reading vulnerability, allowing remote attackers with administrator privileges to exploit Relative Path Traversal to download arbitrary system files.

Basic Information

ID CVE-2025-9570

Source twcert

Published Sep 1, 2025 at 02:46

Modified Sep 1, 2025 at 02:48

Affected Product

Vendor Sunnet

Product eHRD CTMS

Affected Versions Sunnet eHRD CTMS 0

CWE Classification

CWE-23

References

{
    "lastseen": "",
    "description": "The eHRD CTMS developed by Sunnet has an Arbitrary File Reading vulnerability, allowing remote attackers with administrator privileges to exploit Relative Path Traversal to download arbitrary system files.",
    "published": "2025-09-01T02:46:39.988Z",
    "modified": "2025-09-01T02:48:39.179Z",
    "type": "cve",
    "title": "Sunnet\uff5ceHRD CTMS - Arbitrary File Reading through Path Traversal",
    "source": "twcert",
    "references": "https://www.twcert.org.tw/tw/cp-132-10356-ea431-1.html\nhttps://www.twcert.org.tw/en/cp-139-10357-7de41-2.html",
    "id": "CVE-2025-9570",
    "bulletinFamily": "",
    "cwe": [
        "CWE-23"
    ],
    "cvelist": null,
    "sourceData": "Sunnet eHRD CTMS 0",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "eHRD CTMS",
    "version": "0",
    "vendor": "Sunnet",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Sunnet｜eHRD CTMS – Arbitrary File Reading through Path Traversal_CVE-2025-9570