PT-2025-30451 · Alertenterprise · Alertenterprise Guardian
Published
2025-07-22
·
Updated
2025-08-18
·
CVE-2025-31511
CVSS v3.1
7.3
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
AlertEnterprise Guardian version 4.1.14.2.2.1
Description
An issue allows bypassing manager approval by modifying the
user ID in a Request Building Access requestSubmit API call.Recommendations
Apply changes to the Request Building Access API to prevent modification of the
user ID.Fix
Authentication Bypass by Spoofing
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alertenterprise Guardian