CVE 9.8 CRITICAL

Missing Server-Side Authentication Checks in EfficientLab WorkExaminer Professional_CVE-2025-10640

October 22, 2025 invoker category_cve
9.8 / 10
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

An unauthenticated attacker with access to TCP port 12306 of the WorkExaminer server can exploit missing server-side authentication checks to bypass the login prompt in the WorkExaminer Professional console to gain administrative access to the WorkExaminer server and therefore all sensitive monitoring data. This includes monitored screenshots and keystrokes of all users.

The WorkExaminer Professional console is used for administrative access to the server. Before access to the console is granted administrators must login. Internally, a custom protocol is used to call a respective stored procedure on the MSSQL database. The return value of the call is not validated on the server-side. Instead it is only validated client-side which allows to bypass authentication.

AI Analysis

Unauthenticated attackers can bypass login prompts and gain administrative access to sensitive monitoring data due to missing server-side authentication checks in the WorkExaminer Professional console.

Basic Information

ID CVE-2025-10640
Source SEC-VLab
Published Oct 21, 2025 at 11:43
Modified Oct 22, 2025 at 18:59

Affected Product

Vendor EfficientLab
Product WorkExaminer Professional
Version <= 4.0.0.52001
Affected Versions EfficientLab WorkExaminer Professional <= 4.0.0.52001

CWE Classification

CWE-602

AI Assessment

AI Score 9.8 / 10
AI Severity Critical
Vendor EfficientLab
Product WorkExaminer Professional
Version <= 4.0.0.52001

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.