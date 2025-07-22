Vulnerabilities in the popular quality management software could expose highly sensitive data

The Assetnote Security Research Team at Searchlight Cyber has uncovered a series of vulnerabilities in the quality management platform ETQ Reliance.

In particular, the ability to access an internal “SYSTEM” account and escalate through a Remote Code Execution (RCE) vulnerability could allow an attacker to expose the stored data, which - by the nature of the application - is likely to be sensitive. All vulnerabilities were responsibly disclosed and have been patched by ETQ Reliance.

ETQ Reliance is a system for centralized document and forms management. Despite being fairly popular, it has not received much attention from security researchers - no CVEs had been registered to the product prior to the publication of this research. Searchlight’s security researchers investigated the software because of the potential risk inherent in thousands of documents being exposed to the internet.

In total, four CVEs were disclosed, with the technical information on how the vulnerabilities were discovered detailed in the Assetnote Security Research Center:

● CVE-2025-34140 - An authentication bypass vulnerability, where requests containing the suffix `;localized-text` are allowed unauthenticated access to sensitive endpoints.

● CVE-2025-34141 - A stored cross-site scripting (XSS) vulnerability in the `SQLConverterServlet`.

● CVE-2025-34142 - A XML External Entity (XXE) injection vulnerability via the /resources/sessions/sso endpoint.

● CVE-2025-34143 - An authentication bypass vulnerability that allows login as the privileged SYSTEM user by appending a space character to the username field. This leads to remote command execution after bypassing authentication.

The last of these is a relatively straightforward bypass in the login screen, which allowed the researchers to access an internal “SYSTEM” account. This vulnerability could be escalated to Remote Code Execution, meaning any unauthenticated attacker can completely take over an ETQ Reliance instance, including leaking all data.

Shubham Shah, SVP of Research and Engineering at Searchlight Cyber commented: “Some vulnerabilities are simpler than others. A complex exploit is not always required to compromise software. By typing a single space in ETQ Reliance's login screen, we achieved full access to the SYSTEM account, which could quite easily be escalated to remote code execution. These vulnerabilities had the potential to lead to data leaks of sensitive material.”

Searchlight Cyber’s security research team continues to perform novel zero-day and N-day security research to ensure maximum coverage and care for its customers’ attack surfaces. All research is integrated into its Attack Surface Management platform, Assetnote, which continuously monitors, detects, and proves the exploitability of exposures before threat actors can use them.



