PT-2026-33997

🗓️ 21 Apr 2026 00:00:00Reported by Positive TechnologiesType

ptsecurity

ptsecurity🔗 dbugs.ptsecurity.com👁 6 Views

Unauthenticated arbitrary file write in Seeyon Office enables JSP webshell upload and code execution.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2019-25714	21 Apr 202616:11	–	attackerkb
Circl	CVE-2019-25714	22 Apr 202621:02	–	circl
CNNVD	Seeyon OA A8 代码问题漏洞	21 Apr 202600:00	–	cnnvd
CVE	CVE-2019-25714	21 Apr 202616:11	–	cve
Cvelist	CVE-2019-25714 Seeyon Office Anywhere (OA) A8 Unauthenticated Arbitrary File Write via htmlofficeservlet	21 Apr 202616:11	–	cvelist
EUVD	EUVD-2019-20151	21 Apr 202618:31	–	euvd
NVD	CVE-2019-25714	21 Apr 202617:16	–	nvd
RedhatCVE	CVE-2019-25714	5 Jun 202619:09	–	redhatcve
VulnCheck KEV	VulnCheck KEV: CVE-2019-25714	21 Apr 202600:00	–	vulncheck_kev
Vulnrichment	CVE-2019-25714 Seeyon Office Anywhere (OA) A8 Unauthenticated Arbitrary File Write via htmlofficeservlet	21 Apr 202616:11	–	vulnrichment

Source	Link
static-aliyun-doc	www.static-aliyun-doc.oss-cn-hangzhou.aliyuncs.com/download/pdf/90916/Security_Notification_reseller_en-US.pdf
broadcom	www.broadcom.com/support/security-center/attacksignatures/detail
web	www.web.archive.org/web/20190821034711/http://wyb0.com/posts/2019/seeyon-htmlofficeservlet-getshell
wiki	www.wiki.96.mk/Web%E5%AE%89%E5%85%A8/%E8%87%B4%E8%BF%9Coa/%E8%87%B4%E8%BF%9C%20OA%20A8%20htmlofficeservlet%20getshell%20%E6%BC%8F%E6%B4%9E
sourceforge	www.sourceforge.net/software/product/A8
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-25714
vulncheck	www.vulncheck.com/advisories/seeyon-office-anywhere-oa-a8-unauthenticated-arbitrary-file-write-via-htmlofficeservlet
fortiguard	www.fortiguard.com/encyclopedia/ips/48874/seeyon-office-anywhere-htmlofficeservlet-arbitrary-file-upload

21 Apr 2026 00:00Current

6.2Medium risk

Vulners AI Score6.2

CVSS 49.3

EPSS0.00653

Seeyon Office arbitrary file write unauthenticated java webshell webshell upload remote code execution htmlofficeservlet