PT-2025-53675 · Kings Information & Network · Kess Enterprise
Published
2025-12-29
·
Updated
2025-12-31
·
CVE-2025-15065
CVSS v3.1
6.3
Medium
| Vector | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Kings Information & Network Co. KESS Enterprise versions prior to 25.9.19.Exe
Description
A security issue exists in Kings Information & Network Co. KESS Enterprise on Windows that could allow an unauthorized actor to access sensitive information. The issue involves missing encryption of sensitive data and files or directories accessible to external parties. This could lead to privilege escalation, modification of existing services, and modification of shared files.
Recommendations
Update Kings Information & Network Co. KESS Enterprise to version 25.9.19.Exe or later.
Fix
LPE
Missing Encryption of Sensitive Data
Information Disclosure
Files Accessible to External Parties
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Kess Enterprise