Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-43951

LabVantage before LV 8.8.0.13 HF6 allows local file inclusion. Authenticated users can retrieve arbitrary files from the environment via the objectname request parameter.

Published

2025-04-22T18:16:01.650

Last Modified

2025-04-23T14:15:30.093

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-73

Affected Vendors & Products

References

https://github.com/Henkel-CyberVM/CVEs/tree/main/CVE-2025-43951 ([email protected])
https://www.labvantage.com/informatics/lims/ ([email protected])