CVE-2025-43947

Published April 22nd, 2025

View on NVD ↗

CVSS v3

7.3

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Codemers KLIMS 1.6.DEV lacks a proper access control mechanism, allowing a normal KLIMS user to perform all the actions that an admin can perform, such as modifying the configuration, creating a user, uploading files, etc.

Henkel-CyberVM/CVEs

CVE reports created by Henkel AG & Co. KGaA's Cyber Defense team.

GitHub