Skip to main content

ketr JEPaaS CVE-2025-15088

LOW
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') (CWE-74)
2025-12-25 cna@vuldb.com
2.1
CVSS 4.0 · NVD

Severity by source

NVD PRIMARY
2.1 LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

1
Analysis Generated
Apr 29, 2026 - 01:43 vuln.today

DescriptionCVE.org

A vulnerability was detected in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is the function postilService.loadPostils of the file /je/postil/postil/loadPostil. Performing a manipulation of the argument keyWord results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

SQL injection in ketr JEPaaS up to version 7.2.8 allows authenticated remote attackers to manipulate the keyWord parameter in the postilService.loadPostils function at /je/postil/postil/loadPostil endpoint, enabling unauthorized data access with low confidentiality and integrity impact. Public exploit code is available, and the vendor has not responded to early disclosure notification despite multiple contact attempts.

Technical ContextAI

The vulnerability exists in the postilService.loadPostils function of ketr JEPaaS, a Java-based enterprise application platform. The root cause is classified as CWE-74 (Improper Neutralization of Special Elements in Output Used by a Downstream Component), indicating insufficient input sanitization of the keyWord parameter before incorporation into SQL queries. The affected endpoint /je/postil/postil/loadPostil processes user-supplied keyword input directly in database queries without proper parameterized statement usage or input validation, allowing attackers with valid authentication credentials to inject arbitrary SQL commands.

Affected ProductsAI

ketr JEPaaS versions up to and including 7.2.8 are affected. The specific vulnerable component is the postilService.loadPostils function in the postil module accessed via the /je/postil/postil/loadPostil endpoint. No official CPE string was provided in available sources, but affected installations can be identified by version number and deployment of the vulnerable postil service component.

RemediationAI

Upgrade ketr JEPaaS to a version higher than 7.2.8; however, no patched version has been confirmed by the vendor at this time. Organizations unable to upgrade immediately should implement compensating controls by restricting access to the /je/postil/postil/loadPostil endpoint to only trusted internal networks using firewall rules or API gateway policies, as exploitation requires prior authentication and network access. Additionally, implement input validation and parameterized queries at the application layer by ensuring all database interactions in postilService use prepared statements with bound parameters rather than string concatenation. Monitor database query logs for suspicious SQL patterns in keyword searches, and consider disabling or restricting access to the postil service functionality if it is not essential to business operations. Enforce strict authentication policies to limit user accounts with access to this endpoint, thereby reducing the attack surface to only essential personnel.

Share

CVE-2025-15088 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy