ГлавнаяУязвимости → CVE-2025-1387
9.8критическая

CVE-2025-1387

Описание

Orca HCM from LEARNING DIGITAL has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to log in to the system as any user.

Затрагиваемое ПО
Learningdigital Orca hcm
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-8428-59a9a-2.htmlhttps://www.twcert.org.tw/tw/cp-132-8427-daea8-1.html