exploitDog

CVE-2025-53896

Опубликовано: 29 нояб. 2025

Источник: nvd

CVSS3: 7.1

CVSS3: 8.1

EPSS Низкий

Описание

Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, a bug in Kiteworks MFT could cause under certain circumstances that a user's active session would not properly time out due to inactivity. This issue has been patched in version 9.1.0.

Ссылки

https://github.com/kiteworks/security-advisories/security/advisories/GHSA-23h2-3jj8-58hm
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:accellion:kiteworks_managed_file_transfer:*:*:*:*:*:*:*:*

Версия до 9.1.0 (исключая)

EPSS

Процентиль: 8%

0.00029

Низкий

7.1 High

CVSS3

8.1 High

CVSS3

Дефекты

CWE-613

EPSS

Процентиль: 8%

0.00029

Низкий

7.1 High

CVSS3

8.1 High

CVSS3

Дефекты

CWE-613