1. Home
  2. CVE Database
  3. CVE-2025-43000
HIGH · 7.9

CVE-2025-43000

Under certain conditions Promotion Management Wizard (PMW) allows an attacker to access information which would otherwise be restricted.This has High impact on Confidentiality with Low impact on Integ...

Vulnerability Description

Under certain conditions Promotion Management Wizard (PMW) allows an attacker to access information which would otherwise be restricted.This has High impact on Confidentiality with Low impact on Integrity and Availability of the application.

CVSS Score

7.9

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
LOW
Availability
LOW

Related Weaknesses (CWE)

CWE-862

References

FAQ

What is CVE-2025-43000?

CVE-2025-43000 is a vulnerability with a CVSS score of 7.9 (HIGH). Under certain conditions Promotion Management Wizard (PMW) allows an attacker to access information which would otherwise be restricted.This has High impact on Confidentiality with Low impact on Integ...

How severe is CVE-2025-43000?

CVE-2025-43000 has been rated HIGH with a CVSS base score of 7.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-43000?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.