High severityNVD Advisory· Published Jul 22, 2025· Updated Apr 15, 2026
CVE-2025-34140
CVE-2025-34140
Description
An authorization bypass vulnerability exists in ETQ Reliance (legacy CG and NXG SaaS platforms). By appending a specific URI suffix to certain API endpoints, an unauthenticated attacker can bypass access control checks and retrieve limited sensitive resources. The root cause was a misconfiguration in API authorization logic, which has since been corrected in SE.2025.1 and 2025.1.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: < SE.2025.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.