{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-9193", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2025-08-19T17:13:21.967Z", "datePublished": "2025-08-20T00:02:07.078Z", "dateUpdated": "2025-08-20T15:15:52.092Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2025-08-20T00:02:07.078Z"}, "title": "TOTVS Portal Meu RH Password Reset redirect", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-601", "lang": "en", "description": "Open Redirect"}]}], "affected": [{"vendor": "TOTVS", "product": "Portal Meu RH", "versions": [{"version": "12.1.0", "status": "affected"}, {"version": "12.1.1", "status": "affected"}, {"version": "12.1.2", "status": "affected"}, {"version": "12.1.3", "status": "affected"}, {"version": "12.1.4", "status": "affected"}, {"version": "12.1.5", "status": "affected"}, {"version": "12.1.6", "status": "affected"}, {"version": "12.1.7", "status": "affected"}, {"version": "12.1.8", "status": "affected"}, {"version": "12.1.9", "status": "affected"}, {"version": "12.1.10", "status": "affected"}, {"version": "12.1.11", "status": "affected"}, {"version": "12.1.12", "status": "affected"}, {"version": "12.1.13", "status": "affected"}, {"version": "12.1.14", "status": "affected"}, {"version": "12.1.15", "status": "affected"}, {"version": "12.1.16", "status": "affected"}, {"version": "12.1.17", "status": "affected"}, {"version": "12.1.2410.274", "status": "unaffected"}, {"version": "12.1.2502.178", "status": "unaffected"}, {"version": "12.1.2506.121", "status": "unaffected"}], "modules": ["Password Reset Handler"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in TOTVS Portal Meu RH up to 12.1.17. Impacted is an unknown function of the component Password Reset Handler. Executing manipulation of the argument redirectUrl can lead to open redirect. The attack may be performed from a remote location. The exploit has been published and may be used. Upgrading to version 12.1.2410.274, 12.1.2502.178 and 12.1.2506.121 is recommended to address this issue. It is recommended to upgrade the affected component. The vendor explains, that \"[o]ur internal validation (...) confirms that the reported behavior does not exist in currently supported releases. In these tests, the redirectUrl parameter is ignored, and no malicious redirection occurs.\" This vulnerability only affects products that are no longer supported by the maintainer."}, {"lang": "de", "value": "In TOTVS Portal Meu RH bis 12.1.17 ist eine Schwachstelle entdeckt worden. Betroffen davon ist eine unbekannte Funktion der Komponente Password Reset Handler. Durch das Manipulieren des Arguments redirectUrl mit unbekannten Daten kann eine open redirect-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff \u00fcber das Netzwerk. Die Ausnutzung wurde ver\u00f6ffentlicht und kann verwendet werden. Mit einem Upgrade auf Version 12.1.2410.274, 12.1.2502.178 and 12.1.2506.121 l\u00e4sst sich dieses Problem beheben. Die Aktualisierung der betroffenen Komponente wird empfohlen."}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 5.1, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.5, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "baseSeverity": "LOW"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 4, "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N/E:POC/RL:OF/RC:C"}}], "timeline": [{"time": "2025-08-19T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2025-08-19T02:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2025-08-19T19:19:42.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "Trenshyiavv (VulDB User)", "type": "reporter"}], "references": [{"url": "https://vuldb.com/?id.320579", "name": "VDB-320579 | TOTVS Portal Meu RH Password Reset redirect", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.320579", "name": "VDB-320579 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.636360", "name": "Submit #636360 | TOTVS Portal Meu RH 12.1.17 Open Redirect combined with phishing in password reset", "tags": ["third-party-advisory"]}, {"url": "https://drive.google.com/file/d/1iorjSJ8gh3hTDZUy1fHyV-TJXFP43yIo/view?usp=sharing", "tags": ["broken-link", "exploit"]}], "tags": ["unsupported-when-assigned"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-08-20T13:58:03.009154Z", "id": "CVE-2025-9193", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-20T15:15:52.092Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-9193", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-08-20T13:58:03.009154Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-20T13:58:08.967Z"}}], "cna": {"tags": ["unsupported-when-assigned"], "title": "TOTVS Portal Meu RH Password Reset redirect", "credits": [{"lang": "en", "type": "reporter", "value": "Trenshyiavv (VulDB User)"}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 5.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 3.5, "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 3.5, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 4, "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N/E:POC/RL:OF/RC:C"}}], "affected": [{"vendor": "TOTVS", "modules": ["Password Reset Handler"], "product": "Portal Meu RH", "versions": [{"status": "affected", "version": "12.1.0"}, {"status": "affected", "version": "12.1.1"}, {"status": "affected", "version": "12.1.2"}, {"status": "affected", "version": "12.1.3"}, {"status": "affected", "version": "12.1.4"}, {"status": "affected", "version": "12.1.5"}, {"status": "affected", "version": "12.1.6"}, {"status": "affected", "version": "12.1.7"}, {"status": "affected", "version": "12.1.8"}, {"status": "affected", "version": "12.1.9"}, {"status": "affected", "version": "12.1.10"}, {"status": "affected", "version": "12.1.11"}, {"status": "affected", "version": "12.1.12"}, {"status": "affected", "version": "12.1.13"}, {"status": "affected", "version": "12.1.14"}, {"status": "affected", "version": "12.1.15"}, {"status": "affected", "version": "12.1.16"}, {"status": "affected", "version": "12.1.17"}, {"status": "unaffected", "version": "12.1.2410.274"}, {"status": "unaffected", "version": "12.1.2502.178"}, {"status": "unaffected", "version": "12.1.2506.121"}]}], "timeline": [{"lang": "en", "time": "2025-08-19T00:00:00.000Z", "value": "Advisory disclosed"}, {"lang": "en", "time": "2025-08-19T02:00:00.000Z", "value": "VulDB entry created"}, {"lang": "en", "time": "2025-08-19T19:19:42.000Z", "value": "VulDB entry last update"}], "references": [{"url": "https://vuldb.com/?id.320579", "name": "VDB-320579 | TOTVS Portal Meu RH Password Reset redirect", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/?ctiid.320579", "name": "VDB-320579 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/?submit.636360", "name": "Submit #636360 | TOTVS Portal Meu RH 12.1.17 Open Redirect combined with phishing in password reset", "tags": ["third-party-advisory"]}, {"url": "https://drive.google.com/file/d/1iorjSJ8gh3hTDZUy1fHyV-TJXFP43yIo/view?usp=sharing", "tags": ["broken-link", "exploit"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in TOTVS Portal Meu RH up to 12.1.17. Impacted is an unknown function of the component Password Reset Handler. Executing manipulation of the argument redirectUrl can lead to open redirect. The attack may be performed from a remote location. The exploit has been published and may be used. Upgrading to version 12.1.2410.274, 12.1.2502.178 and 12.1.2506.121 is recommended to address this issue. It is recommended to upgrade the affected component. The vendor explains, that \"[o]ur internal validation (...) confirms that the reported behavior does not exist in currently supported releases. In these tests, the redirectUrl parameter is ignored, and no malicious redirection occurs.\" This vulnerability only affects products that are no longer supported by the maintainer."}, {"lang": "de", "value": "In TOTVS Portal Meu RH bis 12.1.17 ist eine Schwachstelle entdeckt worden. Betroffen davon ist eine unbekannte Funktion der Komponente Password Reset Handler. Durch das Manipulieren des Arguments redirectUrl mit unbekannten Daten kann eine open redirect-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff \u00fcber das Netzwerk. Die Ausnutzung wurde ver\u00f6ffentlicht und kann verwendet werden. Mit einem Upgrade auf Version 12.1.2410.274, 12.1.2502.178 and 12.1.2506.121 l\u00e4sst sich dieses Problem beheben. Die Aktualisierung der betroffenen Komponente wird empfohlen."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-601", "description": "Open Redirect"}]}], "providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2025-08-20T00:02:07.078Z"}}}, "cveMetadata": {"cveId": "CVE-2025-9193", "state": "PUBLISHED", "dateUpdated": "2025-08-20T15:15:52.092Z", "dateReserved": "2025-08-19T17:13:21.967Z", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "datePublished": "2025-08-20T00:02:07.078Z", "assignerShortName": "VulDB"}, "dataVersion": "5.1"}

{"cveTags": [{"sourceIdentifier": "cna@vuldb.com", "tags": ["unsupported-when-assigned"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in TOTVS Portal Meu RH up to 12.1.17. Impacted is an unknown function of the component Password Reset Handler. Executing manipulation of the argument redirectUrl can lead to open redirect. The attack may be performed from a remote location. The exploit has been published and may be used. Upgrading to version 12.1.2410.274, 12.1.2502.178 and 12.1.2506.121 is recommended to address this issue. It is recommended to upgrade the affected component. The vendor explains, that \"[o]ur internal validation (...) confirms that the reported behavior does not exist in currently supported releases. In these tests, the redirectUrl parameter is ignored, and no malicious redirection occurs.\" This vulnerability only affects products that are no longer supported by the maintainer."}, {"lang": "es", "value": "Se ha detectado una falla en TOTVS Portal Meu RH hasta la versi\u00f3n 12.1.17. La vulnerabilidad afecta a una funci\u00f3n desconocida del componente Password Reset Handler. La manipulaci\u00f3n del argumento \"redirectUrl\" puede provocar una redirecci\u00f3n abierta. El ataque puede ejecutarse en remoto. Se ha hecho p\u00fablico el exploit y puede que sea utilizado. Se recomienda actualizar a las versiones 12.1.2410.274, 12.1.2502.178 y 12.1.2506.121 para solucionar este problema. Se recomienda actualizar el componente afectado. El proveedor explica que \"nuestra validaci\u00f3n interna confirma que el comportamiento reportado no existe en las versiones con soporte actual. En estas pruebas, se ignora el par\u00e1metro \"redirectUrl\" y no se produce ninguna redirecci\u00f3n maliciosa\". Esta vulnerabilidad solo afecta a los productos que ya no reciben soporte del fabricante."}], "id": "CVE-2025-9193", "lastModified": "2025-08-20T14:39:07.860", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "cna@vuldb.com", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.5, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 1.4, "source": "cna@vuldb.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 5.1, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "PROOF_OF_CONCEPT", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "PASSIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2025-08-20T00:15:26.727", "references": [{"source": "cna@vuldb.com", "url": "https://drive.google.com/file/d/1iorjSJ8gh3hTDZUy1fHyV-TJXFP43yIo/view?usp=sharing"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?ctiid.320579"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?id.320579"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/?submit.636360"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-601"}], "source": "cna@vuldb.com", "type": "Primary"}]}

{}