exploitDog

CVE-2025-2264

Опубликовано: 13 мар. 2025

Источник: nvd

CVSS3: 7.5

EPSS Высокий

Описание

A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attacker can exploit it to download arbitrary files on the disk drive where the application is installed.

Ссылки

https://www.tenable.com/security/research/tra-2025-08
Exploit
Third Party Advisory
https://www.tenable.com/security/research/tra-2025-08
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:santesoft:sante_pacs_server:4.1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.71517

Высокий

7.5 High

CVSS3

Дефекты

CWE-22

CWE-22

Связанные уязвимости

GHSA-xrc3-9jj6-mqcm

CVSS3: 7.5

github

около 1 года назад

A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An unauthenticated remote attacker can exploit it to download arbitrary files on the disk drive where the application is installed.

EPSS

Процентиль: 99%

0.71517

Высокий

7.5 High

CVSS3

Дефекты

CWE-22

CWE-22