PT-2025-35337 · Unknown · Corporate Training Management System

Published

2025-08-30

Updated

2025-08-30

CVE-2025-54943

Report an issue

CVSS v4.0

9.3

Vector

AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions:

SUNNET Corporate Training Management System versions prior to 10.11

Description:

The SUNNET Corporate Training Management System contains a missing authorization flaw. This allows remote attackers to deploy applications without proper authorization due to inadequate access control checks.

Recommendations:

Update to a version newer than 10.11.

Fix

Missing Authorization

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2025-54943

Affected Products

Corporate Training Management System

PT-2025-35337 · Unknown · Corporate Training Management System

Weakness Enumeration

Related Identifiers

Affected Products

References · 5