Security Advisory

CVE-2025-65878

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-05 00:00:00

Last updated 2025-12-05 19:31:30

Assigner mitre

State PUBLISHED

Description

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint `/file/showImageByPath` does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the servers file system. This could lead to the leakage of sensitive system information.

← Browse all CVEs View on cve.org ↗