Unrated severityNVD Advisory· Published Nov 12, 2025· Updated Nov 12, 2025
aEnrich|a+HRD - Authentication Abuse
CVE-2025-12871
Description
The a+HRD developed by aEnrich has an Authentication Abuse vulnerability, allowing unauthenticated remote attackers to craft administrator access tokens and use them to access the system with elevated privileges.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- www.twcert.org.tw/en/cp-139-10487-12a32-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-10486-a3459-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.