CVE-2025-54460 | AVEVA PI Integrator for Business Analytics up to 2020 R2 SP1 unrestricted upload (icsa-25-224-04)

Inserito da Angelo Barbosa | Ago 13, 2025 | CVE

A vulnerability was found in AVEVA PI Integrator for Business Analytics up to 2020 R2 SP1. It has been classified as critical. This affects an unknown part. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2025-54460. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-54460 | AVEVA PI Integrator for Business Analytics up to 2020 R2 SP1 unrestricted upload (icsa-25-224-04)

Post correlati

CVE-2024-12662 | IObit Advanced SystemCare Utimate up to 17.0.0 IOCTL AscRegistryFilter.sys 0x8001E040 null pointer dereference

CVE-2024-11066 | D-Link DSL6740C os command injection

CVE-2025-27424 | Mozilla Firefox up to 135 on iOS HTTP scheme URL redirect

CVE-2023-50309 | IBM Sterling B2B Integrator Standard Edition up to 6.1.2.5/6.2.0.0 Web UI cross site scripting