Process Optimization
CVE-2025-64729
HIGH
Severity by source
AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L
Lifecycle Timeline
2DescriptionCVE.org
The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamper with Process Optimization project files, embed code, and escalate their privileges to the identity of a victim user who subsequently interacts with the project files.
AnalysisAI
The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamper with Process Optimization project files, embed code, and escalate their privileges to the identity of a victim user who subsequently interacts with the project files. [CVSS 8.1 HIGH]
Technical ContextAI
Classified as CWE-862 (Missing Authorization). Affects Process Optimization. The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamper with Process Optimization project files, embed code, and escalate their privileges to the identity of a victim user who subsequently interacts with the project files.
RemediationAI
Monitor vendor advisories for a patch.
More in Process Optimization
View allA CVSS 10.0 code injection vulnerability allows unauthenticated attackers to achieve remote code execution with OS-level
The vulnerability, if exploited, could allow an authenticated miscreant (OS standard user) to tamper with TCL Macro scr
The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to trick Process Optimizatio
The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Standard User) to tamper
The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Designer User) to embed O
The Process Optimization application suite leverages connection channels/protocols that by-default are not encrypted an
Same weakness CWE-862 – Missing Authorization
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today