Authentication Bypass Vulnerability in Akinsoft ProKuafor Software
CVE-2025-2413

8.6HIGH

Key Information:

Vendor: Akinsoft
Status: Prokuafor
Vendor: CVE Published:; 2 September 2025

What is CVE-2025-2413?

The vulnerability in Akinsoft ProKuafor arises from improper restrictions on excessive authentication attempts, leading to an authentication bypass. This flaw allows unauthorized users to gain access by circumventing the authentication mechanism. The affected versions are those prior to v1.02.08, putting users at risk of potential data breaches and unauthorized access. It is crucial for users to update to the latest version to mitigate these risks.

Affected Version(s)

ProKuafor s1.02.08

References

https://www.usom.gov.tr/bildirim/tr-25-0204

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 2, 2025
Vulnerability Reserved
Mar 17, 2025

Credit

Berat ARSLAN