Lucene search
K

22 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.5 views

CVE-2025-66956

Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a computable URL...

9.9CVSS5.9AI score0.00485EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.3 views

CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

6.5CVSS5.9AI score0.0027EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/12 9:34 p.m.3 views

EUVD-2025-208619

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

5.8AI score0.0027EPSS
Exploits0References4
NVD
NVD
added 2026/03/12 7:16 p.m.2 views

CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

6.5CVSS0.0027EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.6 views

PT-2026-25039

Name of the Vulnerable Software and Affected Versions Asseco SEE Live 2.0 Description A local file inclusion issue exists in the Contact Plan, E-Mail, SMS, and Fax components. Remote authenticated users can access files on the host system through the path parameter in the downloadAttachment and...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/03/12 12:0 a.m.39 views

CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

0.0027EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/12 12:0 a.m.1 views

CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

5.8AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.6 views

Asseco SEE Live 安全漏洞

Asseco SEE Live is a real-time customer interaction and notification management system for financial services offered by the Polish company Asseco. Version 2.0 of Asseco SEE Live contains a security vulnerability. This vulnerability stems from local file inclusion in the Contact Plan, E-Mail, SMS...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References3
CVE
CVE
added 2026/03/12 12:0 a.m.8 views

CVE-2025-66955

The CVE-2025-66955 entry concerns Local File Inclusion in Asseco SEE Live 2.0, specifically within the Contact Plan, E-Mail, SMS and Fax components. The vulnerable surface is the downloadAttachment and downloadAttachmentFromPath APIs, where a malicious user with authentication can supply a path p...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/12 12:0 a.m.4 views

CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

5.9AI score0.0027EPSS
Exploits0References2
NVD
NVD
added 2026/03/11 9:16 p.m.4 views

CVE-2025-66956

Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a computable URL...

9.9CVSS0.00485EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/11 12:0 a.m.3 views

CVE-2025-66956

Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a computable URL...

5.9AI score0.00485EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/11 12:0 a.m.28 views

CVE-2025-66956

Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a computable URL...

0.00485EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/11 12:0 a.m.1 views

CVE-2025-66956

Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a computable URL...

9.9CVSS5.9AI score0.00485EPSS
Exploits0References4
CVE
CVE
added 2026/03/11 12:0 a.m.11 views

CVE-2025-66956

CVE-2025-66956 affects Asseco SEE Live 2.0’s Contact Plan, E-Mail, SMS and Fax components. Insecure access control permits remote attackers to access and execute attachments via a computable URL. Root cause is described as improper authorization checks in these components; the impact is remote ac...

9.9CVSS5.9AI score0.00485EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.5 views

PT-2026-24812

CVE-2025-66956 Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a computa… https://t.co/B86afgMbsO...

9.9CVSS5.9AI score0.00485EPSS
Exploits0References8
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.42 views

Asseco SEE iBank FX Client 2.0.9.3 - Local Privilege Escalation Vulnerability

No description provided by source. ? Asseco SEE iBank FX Client = 2.0.9.3 Local Privilege Escalation Vulnerability Vendor: Asseco SEE Product web page: http://www.asseco.com Affected version: 2.0.9.3 Build 22.06.2011 - Desktop/Enterprise Edition 1.2 1.1.5.1270 Service Pack 5 - Desktop Edition...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2014/02/07 12:0 a.m.28 views

Asseco SEE iBank FX Client 2.0.93 Privilege Escalation

Asseco SEE iBank FX Client = 2.0.9.3 Local Privilege Escalation Vulnerability Vendor: Asseco SEE Product web page: http://www.asseco.com Affected version: 2.0.9.3 Build 22.06.2011 - Desktop/Enterprise Edition 1.2 1.1.5.1270 Service Pack 5 - Desktop Edition 1.1.5.1247 1.0 Application download...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2014/02/06 12:0 a.m.28 views

Asseco SEE iBank FX Client 2.0.9.3 - Local Privilege Escalation

Asseco SEE iBank FX Client 2.0.9.3 - Local Privilege Escalation Asseco SEE iBank FX Client = 2.0.9.3 Local Privilege Escalation Vulnerability Vendor: Asseco SEE Product web page: http://www.asseco.com Affected version: 2.0.9.3 Build 22.06.2011 - Desktop/Enterprise Edition 1.2 1.1.5.1270 Service...

0.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2014/02/06 12:0 a.m.45 views

Asseco SEE iBank FX Client <= 2.0.9.3 Local Privilege Escalation Vulnerability

Summary FX Client is an offline application for e-banking that is intended only for legal entities. Description The application is vulnerable to an elevation of privileges vulnerability which can be used by a simple user that can change the executable file with a binary of choice. The vulnerabili...

5.8AI score
Exploits0
Rows per page
Query Builder