Skip to main content

A8 Collaborative Management Software

1 CVEs product

Monthly

CVE-2019-25714 CRITICAL POC Act Now

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection File Upload A8 V5 Collaborative Management Software A8 Collaborative Management Software
NVD
CVSS 4.0
9.3
EPSS
0.6%
EPSS 1% CVSS 9.3
CRITICAL POC Act Now

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection File Upload A8 V5 Collaborative Management Software +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy