Security Advisory

CVE-2025-57682

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-22 00:00:00

Last updated 2025-09-22 15:53:51

Assigner mitre

State PUBLISHED

Description

Directory Traversal vulnerability in Papermark 0.20.0 and prior allows authenticated attackers to retrieve arbitrary files from an S3 bucket through its CloudFront distribution via the "POST /api/file/s3/get-presigned-get-url-proxy" API

← Browse all CVEs View on cve.org ↗