CVE-2025-4762

🗓️ 15 May 2025 11:49:59Reported by EdgewatchType

Insecure Direct Object Reference vulnerability allows access to files via object identifier manipulation.

Reporter	Title	Published	Views	Family All 7
Circl	CVE-2025-4762	15 May 202515:03	–	circl
CNNVD	eSigna 安全漏洞	15 May 202500:00	–	cnnvd
Cvelist	CVE-2025-4762 Insecure Direct Object Reference (IDOR) vulnerability in eSignaViewer	15 May 202511:49	–	cvelist
EUVD	EUVD-2025-15151	3 Oct 202520:07	–	euvd
NVD	CVE-2025-4762	15 May 202512:15	–	nvd
Positive Technologies	PT-2025-21276 · Esignal · Esignal	15 May 202500:00	–	ptsecurity
Vulnrichment	CVE-2025-4762 Insecure Direct Object Reference (IDOR) vulnerability in eSignaViewer	15 May 202511:49	–	vulnrichment

[
  {
    "defaultStatus": "affected",
    "packageName": "eSignaViewer",
    "product": "eSigna",
    "vendor": "Lleidanet PKI",
    "versions": [
      {
        "status": "unaffected",
        "version": "1.3.2"
      },
      {
        "status": "unaffected",
        "version": "1.4.4"
      },
      {
        "status": "unaffected",
        "version": "4.0.4"
      },
      {
        "status": "unaffected",
        "version": "4.1.4"
      },
      {
        "status": "unaffected",
        "version": "5.0.2"
      },
      {
        "status": "unaffected",
        "version": "5.1.2"
      },
      {
        "status": "unaffected",
        "version": "5.2.4"
      },
      {
        "status": "unaffected",
        "version": "5.3.3"
      },
      {
        "status": "unaffected",
        "version": "5.4.1"
      }
    ]
  }
]

Source	Link
edgewatch	www.edgewatch.com/vulnerability-advisories/path-traversal-and-idor-vulnerabilities-in-esignaviewer-allow-unauthorized-file-access/

15 Apr 2026 00:35Current

7.4High risk

Vulners AI Score7.4

CVSS 42

EPSS0.00251

SSVC

CWE-20