Security Advisory

CVE-2025-34508

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-17 14:14:48

Last updated 2026-03-05 12:04:29

Assigner VulnCheck

State PUBLISHED

Description

A path traversal vulnerability exists in the file dropoff functionality of ZendTo versions 6.15-7 and prior. This could allow a remote, authenticated attacker to retrieve the files of other ZendTo users, retrieve files on the host system, or cause a denial of service.

← Browse all CVEs View on cve.org ↗