Home > Vulnerability Database > CVE-2025-25618

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2025-25618

Date: March 16, 2025

Incorrect Access Control in Unifiedtransform 2.0 leads to Privilege Escalation allowing the change of Section Name and Room Number by Teachers.

Severity Score

3.3

Related Resources (4)

Url: https://github.com/armaansidana2003/CVE-2025-25618

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-25618

Url: https://github.com/changeweb/Unifiedtransform

Url: https://www.mend.io/vulnerability-database/CVE-2025-25618

Severity Score

3.3

Weakness Type (CWE)

Improper Access Control

CWE-284

CVSS v3.1

Base Score:	3.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	HIGH
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	LOW

Do you need more information?

Contact Us