3 matches found
CVE-2025-66837
A file upload vulnerability in ARIS 10.0.23.0.3587512 allows attackers to execute arbitrary code via uploading a crafted PDF file/Malware...
CVE-2025-66838
The CVE describes an issue in ARIS prior to version 10.0.23.0.3587512 where the file upload function does not enforce rate limiting/throttling. This allows an attacker to upload a large volume of files at an unrestricted rate, potentially causing resource exhaustion such as disk space depletion, ...
PT-2026-1864
Name of the Vulnerable Software and Affected Versions ARIS version 10.0.23.0.3587512 Description A file upload issue exists in ARIS version 10.0.23.0.3587512. Attackers can potentially execute arbitrary code by uploading a specially crafted PDF file containing malware. The vulnerability involves...