CVE-2025-44040

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-44040
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-44040.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-44040
Published
2025-05-21T21:16:03.263Z
Modified
2026-04-10T05:27:09.763330Z
Severity
  • 7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via UserService.php and the checkForOldHash function. Authentication decisions may be made via PHP loose-equality comparisons if a specific MD5 value is present in the credential store. NOTE: this is disputed by the Supplier because an adversary has no way to place the specific MD5 value into the credential store (unless they already have full privileges) and because the specific MD5 value would not realistically be present otherwise.

References

Affected packages

Git / github.com/orangehrm/orangehrm

Affected ranges

Type
GIT
Repo
https://github.com/orangehrm/orangehrm
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
194a751e23977d76374386f2e405ac68eeed6904
Fixed
194a751e23977d76374386f2e405ac68eeed6904
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.7"
        }
    ]
}

Affected versions

4.*
4.2
4.2.0.1
4.3
4.3.1
4.3.2
4.3.3
4.3.4
4.3.5
4.6.0.1
v.*
v.5.0
v4.*
v4.1
v4.1.1
v4.1.2
v4.1.2.1
v4.3.5
v4.3.5.1
v4.4
v4.5
v4.6
v4.7
v4.8
v4.9
v5.*
v5.0-beta
v5.1
v5.2
v5.3
v5.4
v5.5
v5.6
v5.6.1
v5.7

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-44040.json"