What is the CVSS score of CVE-2025-65897?

CVE-2025-65897 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.5%.

Which versions of Zdh Web are affected by CVE-2025-65897?

CVE-2025-65897 affects zdh_web deployments through version 5.6.17, allowing authenticated users to write arbitrary files and potentially execute remote code on affected servers.. A patch is available.

How to fix or mitigate CVE-2025-65897?

Within 24 hours: Inventory all zdh_web instances and versions in production; restrict access to zdh_web to essential personnel only. Within 7 days: Apply available vendor patch to all affected systems; verify patch application through version checks. Within 30 days: Conduct file system integrity audits on patched systems; review access logs for suspicious file write activity during the vulnerability window.

Zdh Web CVE-2025-65897

EUVD-2025-201420 HIGH

Path Traversal (CWE-22)

2025-12-05 cve@mitre.org

Privilege Escalation RCE Path Traversal File Upload Zdh Web

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 15, 2026 - 17:08 euvd

EUVD-2025-201420

Analysis Generated

Mar 15, 2026 - 17:08 vuln.today

Patch released

Mar 15, 2026 - 17:08 nvd

Patch available

CVE Published

Dec 05, 2025 - 16:15 nvd

HIGH 8.8

DescriptionNVD

zdh_web is a data collection, processing, monitoring, scheduling, and management platform. In zdh_web thru 5.6.17, insufficient validation of file upload paths in the application allows an authenticated user to write arbitrary files to the server file system, potentially overwriting existing files and leading to privilege escalation or remote code execution.

Analysis

Technical ContextAI

Path traversal allows an attacker to access files outside the intended directory by manipulating file paths with sequences like '../'.

RemediationAI

A vendor patch is available — apply it immediately. Validate and sanitize file path inputs. Use a whitelist of allowed files or directories. Implement chroot jails or containerization.

CVE-2025-65897 vulnerability details – vuln.today

Back

Zdh Web CVE-2025-65897

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

Analysis

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code