Primary

Context

a+HRD Authentication Abuse Vulnerability Allowing Elevated Privileges

Vulnerability

An authentication abuse vulnerability has been identified in a+HRD versions through 7.5, developed by aEnrich. This vulnerability allows unauthenticated remote attackers to send crafted packets that obtain administrator access tokens. These tokens can then be used to access the system with elevated privileges.

Impact

Exploitation of this vulnerability allows for unauthorized access to the system with administrative rights, potentially leading to further actions or changes within the system that could be harmful or disruptive.

Remediation

Users are advised to upgrade to version 6.8 or later and install the latest patches. For assistance, contact aEnrich customer service.

Added: Nov 12, 2025, 8:19 AM

Updated: Nov 12, 2025, 8:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.7

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.7

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

a+HRD Authentication Abuse Vulnerability Allowing Elevated Privileges

Vulnerability

Impact

Remediation

Affected Products

aEnrich a+HRD

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating