Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

NVD
NVDadded 2026/01/07 5:16 p.m.4 views

CVE-2025-66837

A file upload vulnerability in ARIS 10.0.23.0.3587512 allows attackers to execute arbitrary code via uploading a crafted PDF file/Malware...

6.8CVSS0.00061EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/01/07 12:0 a.m.1 views

CVE-2025-66838

In Aris v10.0.23.0.3587512 and before, the file upload functionality does not enforce any rate limiting or throttling, allowing users to upload files at an unrestricted rate. An attacker can exploit this behavior to rapidly upload a large volume of files, potentially leading to resource exhaustio...

6.6AI score0.00034EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/01/07 12:0 a.m.2 views

CVE-2025-66837

A file upload vulnerability in ARIS 10.0.23.0.3587512 allows attackers to execute arbitrary code via uploading a crafted PDF file/Malware...

7.5AI score0.00061EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/01/07 12:0 a.m.1 views

Software ARIS 安全漏洞

Software ARIS is a business process analysis tool from Software, Germany. A security vulnerability exists in Software ARIS 10.0.23.0.3587512 and prior versions, which stems from a lack of rate limiting in the file upload functionality and could lead to resource exhaustion...

6.5CVSS6.7AI score0.00034EPSS
Exploits0References3
Rows per page
Query Builder