EUVD-2022-43301

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in OpenKM up to 6.3.11 leads to insecure temporary files, upgrade to 6.3.12 recommended

Reporter	Title	Published	Views	Family All 8
CNNVD	OpenKM 安全漏洞	13 Nov 202200:00	–	cnnvd
CVE	CVE-2022-3969	13 Nov 202200:00	–	cve
Cvelist	CVE-2022-3969 OpenKM FileUtils.java getFileExtension temp file	13 Nov 202200:00	–	cvelist
NVD	CVE-2022-3969	13 Nov 202208:15	–	nvd
Prion	Design/Logic Flaw	13 Nov 202208:15	–	prion
Positive Technologies	PT-2022-24987 · Openkm · Openkm	13 Nov 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-3969	22 May 202522:10	–	redhatcve
Vulnrichment	CVE-2022-3969 OpenKM FileUtils.java getFileExtension temp file	13 Nov 202200:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "88be1b7a-b2e2-3c25-ba5c-063b466f2b12",
        "vendor": {
          "name": "unspecified"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "01e8d43a-44e1-3a9b-9dbe-ceba0211a64a",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.8"
      },
      {
        "id": "0efde115-12ea-3f01-a308-deaaca8aebb1",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.4"
      },
      {
        "id": "73c8afa9-89ed-3628-b18d-9719cba60ca5",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.1"
      },
      {
        "id": "7534ab51-fd25-32b2-95ef-fbbabfdfaabb",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.11"
      },
      {
        "id": "77f5a53d-142f-36e4-a806-d04a2de5e66f",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.7"
      },
      {
        "id": "a2964649-150b-365a-963d-3f5e468b3b07",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.9"
      },
      {
        "id": "b3c5abb2-1e64-3dd8-ba75-28195c2c5089",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.5"
      },
      {
        "id": "bcdbc10b-5383-3549-8a99-16cecddcc9df",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.6"
      },
      {
        "id": "c5717b8d-c27c-3387-9082-454318f9fdac",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.10"
      },
      {
        "id": "c7aab035-ce00-360f-9599-f7fc60c874f6",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.3"
      },
      {
        "id": "cc7a3951-6758-39a8-b9cb-309da9937dd6",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.2"
      },
      {
        "id": "f60d19bb-84f4-3b37-814d-af75d3c03f3f",
        "product": {
          "name": "OpenKM"
        },
        "product_version": "6.3.0"
      }
    ]
  }
]

Source	Link
github	www.github.com/openkm/document-management-system/pull/332
github	www.github.com/openkm/document-management-system/releases/tag/v6.3.12
github	www.github.com/openkm/document-management-system/commit/c069e4d73ab8864345c25119d8459495f45453e1
vuldb	www.vuldb.com/

03 Oct 2025 20:07Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.12.6 - 5.5

EPSS0.00526

SSVC