Skip to main content

Campus Recruiting CVE-2026-57912

| EUVDEUVD-2026-39643 HIGH
Client-Side Enforcement of Server-Side Security (CWE-602)
2026-06-26 mitre GHSA-q2wr-7pw7-p6fg
7.5
CVSS 3.1 · Vendor: mitre
Share

Severity by source

Vendor (mitre) PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
vuln.today AI
7.5 HIGH

Network-reachable web app with no auth or interaction (AV:N/AC:L/PR:N/UI:N); impact is pure data exposure, so C:H with I:N/A:N and no scope change.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (mitre).

CVSS VectorVendor: mitre

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

2
Patch available
Jun 26, 2026 - 12:02 EUVD
Analysis Generated
Jun 26, 2026 - 11:20 vuln.today

DescriptionCVE.org

Johnson & Johnson Campus Recruiting before 2025-10-31 allows viewing of data provided by recruited students, and notes entered about students by interviewers.

AnalysisAI

Information disclosure in Johnson & Johnson's Campus Recruiting web application (versions prior to the 2025-10-31 fix) allows remote unauthenticated attackers to view sensitive data submitted by recruited students as well as private notes interviewers entered about those candidates. The flaw stems from the server relying on client-side restrictions rather than enforcing authorization server-side (CWE-602). …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Reach J&J recruiting web app
Delivery
Identify candidate-data endpoint
Exploit
Manipulate request bypassing client-side checks
Execution
Server returns records without authorization
Impact
Exfiltrate student PII and interviewer notes

Vulnerability AssessmentAI

Exploitation Exploitation requires only network reachability to the Johnson & Johnson Campus Recruiting web application as it existed before 2025-10-31 - no authentication, no privileges, and no user interaction (AV:N/AC:L/PR:N/UI:N), consistent with the server relying on client-side rather than server-side access enforcement (CWE-602). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Signals are mixed and lean toward a moderate-but-real confidentiality risk rather than a critical infrastructure threat. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An unauthenticated attacker browses to the recruiting application and, by directly requesting candidate record endpoints or altering identifiers/parameters that the front-end normally hides, retrieves student application data and interviewers' private notes without logging in. Given the network vector and low attack complexity, this requires only a web client and basic request manipulation; a public researcher write-up describing the technique exists, but no packaged exploit tool was provided in the source data.
Remediation Patch available per vendor advisory: Johnson & Johnson is reported to have remediated the issue on/before 2025-10-31, so any current production instance of the hosted application should already incorporate the fix - confirm directly with J&J that your tenant/instance was patched. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all affected application instances; assess scope of exposed data; prepare candidate notification strategy. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-57912 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy