CVE-2025-62182

2026-01-13 [email protected]

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 21:54 vuln.today
CVE Published
Jan 13, 2026 - 17:15 nvd
N/A

Tags

File Upload

Description

Pega Customer Service Framework versions 8.7.0 through 25.1.0 are affected by a Unrestricted file upload vulnerability, where a privileged user could potentially upload a malicious file.

Analysis

Pega Customer Service Framework versions 8.7.0 versions up to 25.1.0 is affected by unrestricted upload of file with dangerous type.

Technical Context

This vulnerability (CWE-434: Unrestricted Upload of File with Dangerous Type) affects Pega Customer Service Framework versions 8.7.0. Pega Customer Service Framework versions 8.7.0 through 25.1.0 are affected by a Unrestricted file upload vulnerability, where a privileged user could potentially upload a malicious file.

Affected Products

Product: Pega Customer Service Framework versions 8.7.0. Versions: up to 25.1.0.

Remediation

Monitor vendor advisories for a patch. Validate file types by content. Store uploads outside web root.

Priority Score

0
Low Medium High Critical
KEV: 0
EPSS: +0.1
CVSS: +0
POC: 0

Share

CVE-2025-62182 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy