← voltar
CVE-2025-41723

Sauter: Directory Traversal in importFile SOAP Method

CVSS 9.8 CRITICALEPSS 1.2%CWE-35
The importFile SOAP method is vulnerable to a directory traversal attack. An unauthenticated remote attacker bypass the path restriction and upload files to arbitrary locations.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
Sauter · EY-modulo 5 ecos 5 ecos504/505Sauter · EY-modulo 5 modu 5 modu524Sauter · EY-modulo 5 modu 5 modu525Sauter · modulo 6 devices modu612-LCSauter · modulo 6 devices modu660-ASSauter · modulo 6 devices modu680-AS

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://sauter.csaf-tp.certvde.com/.well-known/csaf/white/2025/vde-2025-060.json