3.3
CVE-2025-25618
- EPSS 0.43%
- Veröffentlicht 17.03.2025 00:00:00
- Zuletzt bearbeitet 24.06.2025 14:59:48
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginIncorrect Access Control in Unifiedtransform 2.0 leads to Privilege Escalation allowing the change of Section Name and Room Number by Teachers.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Changeweb ≫ Unifiedtransform Version2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.43% | 0.342 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 3.3 | 0.7 | 2.5 |
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:L
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
https://github.com/changeweb/Unifiedtransform
https://github.com/armaansidana2003/CVE-2025-25618