CVE-2025-9570 is a medium-severity vulnerability identified in the Sunnet eHRD CTMS (Clinical Trial Management System). This vulnerability is classified as CWE-23, which corresponds to a Relative Path Traversal flaw. The issue allows remote attackers who already possess administrator privileges to exploit the system's file handling mechanisms to read arbitrary files on the underlying system. Specifically, the vulnerability enables an attacker to manipulate file path inputs to traverse directories and access files outside the intended directory scope. This can lead to unauthorized disclosure of sensitive system files, configuration files, or other critical data stored on the server hosting the CTMS. The CVSS 4.0 vector (CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N) indicates that the attack can be performed remotely over the network without user interaction, requires high-level privileges (administrator), and results in high confidentiality impact without affecting integrity or availability. The vulnerability does not require user interaction and does not involve scope or authentication bypass beyond the administrator privilege requirement. No known exploits are currently reported in the wild, and no patches have been linked yet. The affected version is listed as '0', which likely indicates an initial or unspecified version of the product. The vulnerability was published on September 1, 2025, and assigned by the TW-CERT. The lack of a patch and the requirement for administrator privileges suggest that while exploitation is not trivial, the potential for sensitive data exposure is significant if an attacker gains administrative access.

For European organizations using the Sunnet eHRD CTMS, this vulnerability poses a risk primarily to the confidentiality of sensitive clinical trial data and system information. Clinical trial management systems often contain highly sensitive patient data, trial protocols, and regulatory documentation. An attacker exploiting this vulnerability could access confidential files, potentially leading to data breaches, regulatory non-compliance (e.g., GDPR violations), and reputational damage. Since the vulnerability requires administrator privileges, the initial compromise vector might involve insider threats or prior credential theft. The exposure of system files could also facilitate further attacks by revealing system configurations or credentials stored in files. Given the critical nature of clinical trial data in pharmaceutical and medical research sectors, European organizations involved in clinical trials or healthcare research could face significant operational and legal consequences if this vulnerability is exploited.

To mitigate this vulnerability effectively, European organizations should: 1) Immediately restrict and monitor administrator access to the Sunnet eHRD CTMS, ensuring that only trusted personnel have such privileges and that multi-factor authentication (MFA) is enforced. 2) Conduct thorough audits of file access logs to detect any unusual file retrieval activities that could indicate exploitation attempts. 3) Implement strict input validation and sanitization on file path parameters within the CTMS, if possible through configuration or vendor guidance, to prevent path traversal attacks. 4) Engage with Sunnet to obtain official patches or updates addressing CVE-2025-9570 as soon as they become available. 5) Employ network segmentation and application-layer firewalls to limit exposure of the CTMS to only necessary internal or trusted networks. 6) Regularly back up critical clinical trial data and system configurations to enable recovery in case of data compromise. 7) Train administrators on secure handling of credentials and awareness of potential exploitation techniques related to path traversal vulnerabilities.