CVE-2025-27631

Medium CVSS: 6.5

The TRMTracker web application is vulnerable to LDAP injection attack potentially allowing an attacker to inject code into a query and execute remote commands that can read and update data on the website.

Vendor

Product

CWE

CWE-90

Yayın Tarihi

2025-03-25 13:15:40

Güncelleme

2025-03-27 16:45:46

Source Identifier

cybersecurity@hitachienergy.com

KEV Date Added

Kategoriler

CWE-90 MEDIUM 2025

Referanslar

https://publisher.hitachienergy.com/preview?DocumentID=8DBD000210&LanguageCode=en&DocumentPartId=&Action=Launch