CVE-2025-14598

EUVD-2026-1730
BeeS Software Solutions BET Portal contains an SQL injection vulnerability in the login functionality of affected sites. The vulnerability enables arbitrary SQL commands to be executed on the backend database.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA-ADPADP
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 4%
Affected Products (NVD)
VendorProductVersion
cloudilyaerpbet_e-portal
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://afnaan.me/cve/cve-2025-14598
https://cloudilyaerp.com/
https://github.com/Afnaan-Ahmed/CVE-2025-14598
https://www.kb.cert.org/vuls/id/361400