EUVD-2020-2963

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Sunnet eHRD has a Broken Access Control vulnerability allowing unauthorized data access via URL.

Reporter	Title	Published	Views	Family All 6
Circl	CVE-2020-10510	30 Mar 202009:47	–	circl
CNVD	Sunnet eHRD Improper Access Control Vulnerability	27 Mar 202000:00	–	cnvd
CVE	CVE-2020-10510	27 Mar 202007:35	–	cve
Cvelist	CVE-2020-10510 Sunnet eHRD - Broken Access Control	27 Mar 202007:35	–	cvelist
NVD	CVE-2020-10510	27 Mar 202008:15	–	nvd
Prion	Improper access control	27 Mar 202008:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "7e5e9f9e-17b2-3c52-8c9b-af7e7a6ef7c0",
        "vendor": {
          "name": "SUNNET"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "256265ca-5e7a-340c-ae00-7d8341cad560",
        "product": {
          "name": "eHRD"
        },
        "product_version": "9"
      },
      {
        "id": "2c50b746-6204-3d19-948d-e3829d175a4c",
        "product": {
          "name": "eHRD"
        },
        "product_version": "8"
      }
    ]
  }
]

Source	Link
chtsecurity	www.chtsecurity.com/news/30772cf1-2e7e-4afe-9282-b5a196b22e71
twcert	www.twcert.org.tw/tw/cp-132-3450-69466-1.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.5 - 8.1

CVSS 24

EPSS0.00218