CVE-2025-1846 | zj1983 zz up to 2024-8 File ZfileAction.java deleteLocalFile zids denial of service

A vulnerability was found in zj1983 zz up to 2024-8. It has been declared as problematic. This vulnerability affects the function deleteLocalFile of the file src/main/java/com/futvan/z/system/zfile/ZfileAction.java of the component File Handler. The manipulation of the argument zids leads to denial of service.

This vulnerability was named CVE-2025-1846. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-1846 | zj1983 zz up to 2024-8 File ZfileAction.java deleteLocalFile zids denial of service

Related Posts

CVE-2023-25632 | NAVER Whale Browser Mobile App prior 3.0.1.2 on Android Unlock access control

VDB-253414 | Microsoft Windows Defender injection

CVE-2024-27932 | Deno Suffix Match Privilege Escalation

CVE-2023-6809 | Custom Fields Shortcode Plugin up to 0.1 on WordPress cross site scripting