CVE-2025-12870

Name of the Vulnerable Software and Affected Versions aEnrich a+HRD (affected versions not specified)

Description The software contains an Authentication Abuse issue that allows unauthenticated remote attackers to send crafted packets to obtain administrator access tokens. These tokens can then be used to access the system with elevated privileges. Attackers can leverage these tokens to perform privileged operations, effectively simulating an administrator without proper authorization.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.