Описание
This vulnerability allows authenticated attackers to execute arbitrary commands on the underlying system using the file name of an uploaded file.
This vulnerability allows authenticated attackers to execute arbitrary commands on the underlying system using the file name of an uploaded file.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2025-59818
- https://wiki.zenitel.com/wiki/Turbine_9.3_-_Release_notes
- https://wiki.zenitel.com/wiki/VSF-Display_Series_9.3_Release_Notes
- https://wiki.zenitel.com/wiki/VSF-Fortitude6_9.3_Release_Notes
- https://wiki.zenitel.com/wiki/VSF-Fortitude8_9.3_Release_Notes
- https://wiki.zenitel.com/wiki/ZIPS_9.3_-_Release_notes
- https://www.zenitel.com/sites/default/files/2025-12/A100K12333%20Zenitel%20Security%20Advisory.pdf
Связанные уязвимости
CVSS3: 10
nvd
4 дня назад
This vulnerability allows authenticated attackers to execute arbitrary commands on the underlying system using the file name of an uploaded file.