ByteOS Network

CVE Vulnerability Details :

CVE-2025-54942

PUBLISHED

More Info Official Page

Assigner-ZUSO ART

Assigner Org ID-256c161b-b921-402b-8c3b-c6c9c14d5d88

Published At-30 Aug, 2025 | 03:37

Updated At-30 Aug, 2025 | 03:37

▼CVE Numbering Authority (CNA)

SUNNET Corporate Training Management System - Missing Authentication for Critical Function

A missing authentication for critical function vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to access deployment functionality without prior authentication.

Affected Products

Vendor

SUNNET Technology Co., Ltd.

Product

Corporate Training Management System

Default Status

affected

Versions

Affected

From 0 before 10.11 (custom)

Problem Types

Type	CWE ID	Description
CWE	CWE-306	CWE-306 Missing Authentication for Critical Function

Metrics

Version	Base score	Base severity	Vector
4.0	9.3	CRITICAL	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

Hyperlink	Resource
https://zuso.ai/advisory/	third-party-advisory

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References