Every CVE whose affected-product data names Sun Ehrd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2021-43359 — CVSS 8.8 (high): Sunnet eHRD has broken access control vulnerability, which allows a remote attacker to access account management page after being…
CVE-2021-43360 — CVSS 8.8 (high): Sunnet eHRD e-mail delivery task schedule’s serialization function has inadequate input object validation and restriction, which allows a…
CVE-2020-10510 — CVSS 8.1 (high): Sunnet eHRD, a human training and development management system, contains a vulnerability of Broken Access Control. After login, attackers…
CVE-2020-10508 — CVSS 7.5 (high): Sunnet eHRD, a human training and development management system, improperly stores system files. Attackers can use a specific URL and…
CVE-2021-43358 — CVSS 7.5 (high): Sunnet eHRD has inadequate filtering for special characters in URLs, which allows a remote attacker to perform path traversal attacks…
CVE-2020-10509 — CVSS 6.1 (medium): Sunnet eHRD, a human training and development management system, contains vulnerability of Cross-Site Scripting (XSS), attackers can inject…