68 matches found
CVE-2025-2070
An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads on the system if a crafted url is visited by a local user...
CVE-2025-2069
A cross-site scripting vulnerability was reported in the FileZ client that could allow execution of code if a crafted url is visited by a local user...
CVE-2025-2070
An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads on the system if a crafted url is visited by a local user...
CVE-2025-2068
An open redirect vulnerability was reported in the FileZ client that could allow information disclosure if a crafted url is visited by a local user...
CVE-2025-2070
CVE-2025-2070 concerns the FileZ client, with an improper XML parsing flaw that could allow arbitrary file reads when a crafted URL is visited by a local user. Affected component: FileZ client (XML parsing path). Impact (as per sources): confidentiality impact High; attack vector Local; privilege...
CVE-2025-2070
An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads on the system if a crafted url is visited by a local user...
CVE-2025-2070
An improper XML parsing vulnerability was reported in the FileZ client that could allow arbitrary file reads on the system if a crafted url is visited by a local user...
CVE-2025-2069
A cross-site scripting vulnerability was reported in the FileZ client that could allow execution of code if a crafted url is visited by a local user...
CVE-2025-2069
CVE-2025-2069 : The provided connected documents describe a cross-site scripting vulnerability in the Lenovo/FileZ FileZ client. The issue could allow code execution when a local user visits a crafted URL. The CVE details include a local attack vector with low attack complexity and user interacti...
CVE-2025-2069
A cross-site scripting vulnerability was reported in the FileZ client that could allow execution of code if a crafted url is visited by a local user...
CVE-2025-2068
An open redirect vulnerability was reported in the FileZ client that could allow information disclosure if a crafted url is visited by a local user...
CVE-2025-2068
An open redirect vulnerability was reported in the FileZ client that could allow information disclosure if a crafted url is visited by a local user...
CVE-2025-2068
CVE-2025-2068 relates to the FileZ client and describes an open redirect vulnerability that could enable information disclosure when a crafted URL is visited by a local user. Available connected sources confirm FileZ client as the affected component and an open redirect as the underlying issue, b...
PT-2025-17930 · Unknown · Filez Client
Name of the Vulnerable Software and Affected Versions: FileZ client affected versions not specified Description: A cross-site scripting issue was reported in the FileZ client, which could allow code execution if a local user visits a crafted URL. Recommendations: At the moment, there is no...
Lenovo Filez 代码问题漏洞
Lenovo Filez is an enterprise web drive by the Chinese company Lenovo Lenovo. A security vulnerability exists in Lenovo Filez that stems from improper XML parsing, which could lead to arbitrary file reading...
Lenovo Filez 跨站脚本漏洞
Lenovo Filez is an enterprise web drive of the Chinese company Lenovo Lenovo. A security vulnerability exists in Lenovo Filez that originates from cross-site scripting and could lead to code execution...
PT-2025-17929 · Unknown · Filez Client
Name of the Vulnerable Software and Affected Versions: FileZ client affected versions not specified Description: An open redirect issue was reported in the FileZ client, potentially leading to information disclosure if a local user visits a crafted URL. Recommendations: At the moment, there is no...
PT-2025-17931 · Unknown · Filez Client
Name of the Vulnerable Software and Affected Versions: FileZ client affected versions not specified Description: An improper XML parsing issue was reported in the FileZ client, which could allow arbitrary file reads on the system if a crafted URL is visited by a local user. Recommendations: At th...
Lenovo Filez 输入验证错误漏洞
Lenovo Filez is an enterprise web drive by Chinese company Lenovo Lenovo. A security vulnerability exists in Lenovo Filez that stems from an open redirect that could lead to information disclosure...
CVE-2024-8058
An improper parsing vulnerability was reported in the FileZ client that could allow a crafted file in the FileZ directory to read arbitrary files on the device due to URL preloading...