Unrated severityNVD Advisory· Published Jan 9, 2026· Updated Jan 9, 2026

CVE-2025-67279

Description

An issue in TIM Solution GmbH TIM BPM Suite & TIM FLOW before v.9.1.2 allows a remote attacker to escalate privileges via the application stores password hashes in MD5 format

Affected products

TIM Solution GmbH/BPM Suite & FLOWdescription
TIM Solution GmbH/TIM BPM Suite & TIM FLOWllm-fuzzy
Range: <9.1.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tim-doc.atlassian.net/wiki/spaces/eng/pages/230981636/Release+Notesmitre
www.y-security.de/news-en/tim-bpm-suite-tim-flow-multiple-vulnerabilities/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000