CVE-2025-44040 | OrangeHRM 5.7 UserService.php checkFOrOldHash privileges management (EUVD-2025-16059)
A vulnerability has been found in OrangeHRM 5.7 and classified as problematic. Affected is the function checkFOrOldHash of the file UserService.php. The manipulation leads to improper privilege management.
This vulnerability is referenced as CVE-2025-44040. The attack needs to be initiated within the local network. No exploit is available.