CVE-2025-2705
Digiwin ERP FileUploadApi.ashx DoWebUpload unrestricted upload
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
A vulnerability classified as critical has been found in Digiwin ERP 5.1. Affected is the function DoUpload/DoWebUpload of the file /Api/FileUploadApi.ashx. The manipulation of the argument File leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Es wurde eine kritische Schwachstelle in Digiwin ERP 5.1 entdeckt. Hiervon betroffen ist die Funktion DoUpload/DoWebUpload der Datei /Api/FileUploadApi.ashx. Durch Manipulieren des Arguments File mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk angegangen werden. Der Exploit steht zur öffentlichen Verfügung.
CVSS Scores
SSVC
- Decision:Attend
Timeline
- 2025-03-24 CVE Reserved
- 2025-03-24 CVE Published
- 2025-03-24 CVE Updated
- 2025-03-24 First Exploit
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-284: Improper Access Control
- CWE-434: Unrestricted Upload of File with Dangerous Type
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| https://github.com/Rain1er/report/blob/main/THNlcnBf/RCE_3.md | Related | |
| https://vuldb.com/?id.300726 | Technical Description | |
| https://vuldb.com/?submit.516291 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://github.com/Rain1er/report/blob/main/THNlcnBf/RCE_4.md | 2025-03-24 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|