exploitDog

CVE-2025-2264

Опубликовано: 13 мар. 2025

Источник: nvd

CVSS3: 7.5

EPSS Средний

Описание

A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attacker can exploit it to download arbitrary files on the disk drive where the application is installed.

Ссылки

https://www.tenable.com/security/research/tra-2025-08
Exploit
Third Party Advisory
https://www.tenable.com/security/research/tra-2025-08
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:santesoft:sante_pacs_server:4.1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.68778

Средний

7.5 High

CVSS3

Дефекты

CWE-22

CWE-22

Связанные уязвимости

GHSA-xrc3-9jj6-mqcm

CVSS3: 7.5

github

11 месяцев назад

A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attacker can exploit it to download arbitrary files on the disk drive where the application is installed.

EPSS

Процентиль: 99%

0.68778

Средний

7.5 High

CVSS3

Дефекты

CWE-22

CWE-22