PT-2025-35336 · Unknown · Corporate Training Management System

Published

2025-08-30

Updated

2025-08-30

CVE-2025-54942

CVSS v4.0

9.3

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions:

SUNNET Corporate Training Management System versions prior to 10.11

Description:

A missing authentication check for a critical function allows remote attackers to access deployment functionality without authentication.

Recommendations:

Update to a version prior to 10.11.

Fix

Missing Authentication

Weakness Enumeration

CVE-2025-54942

Corporate Training Management System