[Vulnerability Alert] Kaifa Technology | WebITR - Major Security Vulnerability Exists

• Subject: [Vulnerability Alert] Kaifa Technology | WebITR - Major Security Vulnerability Exists
• Content:
  • Forwarded from Taiwan Computer Emergency Response Team/Coordination Center TWCERTCC-200-202508-00000014
  • [Kaifa Technology | WebITR] (CVE-2025-9254, CVSS: 9.8) An unauthenticated remote attacker can exploit a specific function to log in to the system with arbitrary user privileges.
  • This message is only sent to “county/city network centers”. Please assist in forwarding and notifying the units under your jurisdiction.
• Affected Platforms:
  • WebITR versions 2_1_0_32 and earlier.
• Recommended Measures:
  • Update to version 2_1_0_33 or later.
• References:
  1. https://www.twcert.org.tw/tw/cp-132-10328-dbc35-1.html

Computer and Communications Center
Network Systems Group