Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/23 12:22 a.m.9 views

CVE-2025-44040

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via UserService.php and the checkForOldHash function. Authentication decisions may be made via PHP loose-equality comparisons if a specific MD5 value is present in the credential store. NOTE: this is disputed by the Supplier...

7.2CVSS7.3AI score0.00404EPSS
Exploits0References1
nvd
nvd
added 2025/05/21 9:16 p.m.16 views

CVE-2025-44040

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via UserService.php and the checkForOldHash function. Authentication decisions may be made via PHP loose-equality comparisons if a specific MD5 value is present in the credential store. NOTE: this is disputed by the Supplier...

7.2CVSS0.00404EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/05/21 12:0 a.m.8 views

CVE-2025-44040

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via UserService.php and the checkForOldHash function. Authentication decisions may be made via PHP loose-equality comparisons if a specific MD5 value is present in the credential store. NOTE: this is disputed by the Supplier...

6.9AI score0.00404EPSS
Exploits0References2
cvelist
cvelist
added 2025/05/21 12:0 a.m.25 views

CVE-2025-44040

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via UserService.php and the checkForOldHash function. Authentication decisions may be made via PHP loose-equality comparisons if a specific MD5 value is present in the credential store. NOTE: this is disputed by the Supplier...

0.00404EPSS
Exploits0References2
osv
osv
added 2025/05/21 12:0 a.m.6 views

CVE-2025-44040

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via UserService.php and the checkForOldHash function. Authentication decisions may be made via PHP loose-equality comparisons if a specific MD5 value is present in the credential store. NOTE: this is disputed by the Supplier...

7.2CVSS7.3AI score0.00404EPSS
Exploits0References4
Rows per page
Query Builder