Security Advisory

CVE-2025-8840

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-11 09:32:05

Last updated 2025-08-11 12:49:40

Assigner VulDB

State PUBLISHED

Description

A vulnerability was determined in jshERP up to 3.5. Affected is an unknown function of the file /jshERP-boot/user/deleteBatch of the component Endpoint. The manipulation of the argument ids leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Different than CVE-2025-7947.

← Browse all CVEs View on cve.org ↗