Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)
Convercent举报平台(EQS集团)存在多个安全配置错误和客户枚举暴露问题,已分配CVE-2025-34411和CVE-2025-34412。 2025-12-16 05:18:33 Author: seclists.org(查看原文) 阅读量:5 收藏
Convercent举报平台(EQS集团)存在多个安全配置错误和客户枚举暴露问题,已分配CVE-2025-34411和CVE-2025-34412。 2025-12-16 05:18:33 Author: seclists.org(查看原文) 阅读量:5 收藏
Full Disclosure mailing list archives
From: Yuffie Kisaragi via Fulldisclosure <fulldisclosure () seclists org>
Date: Mon, 15 Dec 2025 16:40:14 +0000
UPDATE: The reported vulnerabilities have now been assigned CVE identifiers: CVE-2025-34411: https://www.cve.org/cverecord?id=CVE-2025-34411 [https://www.cve.org/cverecord?id=CVE-2025-34411] CVE-2025-34412: https://www.cve.org/cverecord?id=CVE-2025-34412 [https://www.cve.org/cverecord?id=CVE-2025-34412] _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/
Current thread:
- Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group) Yuffie Kisaragi via Fulldisclosure (Dec 05)
- Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group) Yuffie Kisaragi via Fulldisclosure (Dec 15)
文章来源: https://seclists.org/fulldisclosure/2025/Dec/15
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh