Security Advisory

CVE-2025-11221

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-02 05:15:16
Last updated 2025-10-02 15:53:53
Assigner FSI
State PUBLISHED

Description

Improper Limitation of a Pathname to a Restricted Directory (Path Traversal), Unrestricted Upload of File with Dangerous Type vulnerability in GTONE ChangeFlow allows Path Traversal, Accessing Functionality Not Properly Constrained by ACLs.This issue affects ChangeFlow: from All versions through v9.0.1.1.