cvedb.io
CVE-2025-43947
HIGH · CVSS 7.3
EPSS exploitation probability: 0%
Published 2025-04-22T18:16:01.170 · Last modified 2026-06-17T09:24:47.720

Summary

Codemers KLIMS 1.6.DEV lacks a proper access control mechanism, allowing a normal KLIMS user to perform all the actions that an admin can perform, such as modifying the configuration, creating a user, uploading files, etc.

Affected products

codemers — klims

Does this affect you?

Add your gear to cvedb and we'll alert you only when codemers ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.