CVE-2025-66526
BaseFortify
Publication date: 2025-12-09
Last updated on: 2025-12-10
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| essekia | tablesome | 1.1.34 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Missing Authorization issue in Essekia Tablesome, which means that the software does not properly enforce access control security levels. As a result, unauthorized users may be able to exploit the system due to incorrectly configured access controls in versions up to and including 1.1.34.
How can this vulnerability impact me? :
The impact of this vulnerability could allow unauthorized users to access or manipulate data or functionality that should be restricted, potentially leading to data breaches, unauthorized actions, or compromise of system integrity.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability could negatively affect compliance with standards such as GDPR and HIPAA because missing or incorrect authorization controls may lead to unauthorized access to sensitive personal or health data, violating data protection and privacy requirements.