CVE-2025-62013
BaseFortify
Publication date: 2025-10-22
Last updated on: 2026-04-27
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| posimyth | uichemy | 4.0.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Missing Authorization issue in POSIMYTH UiChemy up to version 4.0.0. It means that the software does not properly check if a user has the necessary permissions to perform certain actions, potentially allowing unauthorized access or operations.
How can this vulnerability impact me? :
The impact of this vulnerability could include unauthorized users gaining access to restricted functions or data within the UiChemy application, which may lead to data breaches, unauthorized changes, or other security risks.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability could negatively affect compliance with standards like GDPR and HIPAA because unauthorized access to sensitive data or systems may violate data protection and privacy requirements mandated by these regulations.