CVE Daily

CVE-2025-52836

Incorrect Privilege Assignment vulnerability in Unity Business Technology Pty Lt...

Critical CVSS 9.8

Overview

Incorrect Privilege Assignment vulnerability in Unity Business Technology Pty Ltd The E-Commerce ERP allows Privilege Escalation. This issue affects The E-Commerce ERP: from n/a through 2.1.1.3.

CWE: CWE-266 Published: 2025-07-16T12:15:29.793
Risk analysis

This vulnerability is rated 🔴 CRITICAL.

  • CVSS: 9.8 (CRITICAL)
  • Detected tags: priv_esc (tag impact: HIGH)

Recommended actions:

  • Fix privilege escalation urgently.
  • Enforce least-privilege and strengthen EDR detection.

Recommended tools

Tags