CVE-2025-1575 | Harpia DiagSystem 12 atualatendimento_jpeg.php cod/codexame resource injection

Posted by Angelo Barbosa | Feb 22, 2025 | CVE

A vulnerability classified as problematic has been found in Harpia DiagSystem 12. Affected is an unknown function of the file /diagsystem/PACS/atualatendimento_jpeg.php. The manipulation of the argument cod/codexame leads to improper control of resource identifiers.

This vulnerability is traded as CVE-2025-1575. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-1575 | Harpia DiagSystem 12 atualatendimento_jpeg.php cod/codexame resource injection

Related Posts

CVE-2024-26580 | Apache InLong up to 1.10.0 File deserialization

CVE-2025-0910 | Tracker Software PDF-XChange Editor U3D File Parser out-of-bounds write

CVE-2023-47183 | GiveWP Plugin up to 2.33.1 on WordPress authorization

CVE-2023-43016 | IBM Security Access Manager Container up to 10.0.6.1 empty password in configuration file (XFDB-266154)