CVE-2025-45854 | JEHC-BPM 2.0.1 /server/executeExec unrestricted upload

Inserito da Angelo Barbosa | Giu 3, 2025 | CVE

A vulnerability classified as critical has been found in JEHC-BPM 2.0.1. Affected is an unknown function of the file /server/executeExec. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-45854. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-45854 | JEHC-BPM 2.0.1 /server/executeExec unrestricted upload

Post correlati

CVE-2024-11716 | CTFd up to 3.7.4 Bracket CTFd/schemas/users.py validate_bracket_id access control

CVE-2022-49403 | Linux Kernel up to 5.17.13/5.18.2 string_helpers devm_kasprintf_strarray memory leak

CVE-2025-23221 | dahlia fedify up to 1.0.13/1.1.10/1.2.10/1.3.3 infinite loop (GHSA-c59p-wq67-24wx)

CVE-2024-38775 | WebAppick CTX Feed Plugin up to 6.5.6 on WordPress privileges management