Security Advisory

CVE-2025-35112

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-26 22:19:20

Last updated 2025-08-29 18:26:12

Assigner cisa-cg

State PUBLISHED

Description

Agiloft Release 28 contains an XML External Entities vulnerability in any table that allows import/export, allowing an authenticated attacker to import the template file and perform path traversal on the local system files. Users should upgrade to Agiloft Release 31.

← Browse all CVEs View on cve.org ↗