CVE-2025-27519 | truefoundry cognita Environment Variable upload-to-local-directory path traversal (GHSL-2024-193)

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability has been found in truefoundry cognita and classified as critical. Affected by this vulnerability is an unknown functionality of the file /v1/internal/upload-to-local-directory of the component Environment Variable Handler. The manipulation leads to path traversal.

This vulnerability is known as CVE-2025-27519. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-27519 | truefoundry cognita Environment Variable upload-to-local-directory path traversal (GHSL-2024-193)

Post correlati

CVE-2024-24838 | Five Star Restaurant Reviews Plugin up to 2.3.5 on WordPress cross site scripting

CVE-2024-38574 | Linux Kernel up to 6.8.11/6.9.2 libbpf bpf_objec_load_prog null pointer dereference (ef80b59acfa4/1fd91360a758/9bf48fa19a4b)

CVE-2023-46354 | MyPrestaModules Orders Export Pro Module up to 5.1.x on PrestaShop permission

CVE-2025-24010 | vitejs vite up to 4.5.5/5.4.11/6.0.8 origin validation