4 matches found
CVE-2025-23171
The Versa Director SD-WAN orchestration platform provides an option to upload various types of files. The Versa Director does not correctly limit file upload permissions. The UI appears not to allow file uploads but uploads still succeed. In addition, the Versa Director discloses the full filenam...
CVE-2025-23171
creationtimestamp| type| source ---|---|--- 2025-06-18 23:41:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18819 2025-06-19 01:05:08+00:00| seen| Telegram/o4VR5fP0RObkYE5GCSWcOZP4OP4WWVDrridRceJ4mceL0 2025-06-19 08:50:17+00:00| seen|...
CVE-2025-23171
The Versa Director SD-WAN orchestration platform provides an option to upload various types of files. The Versa Director does not correctly limit file upload permissions. The UI appears not to allow file uploads but uploads still succeed. In addition, the Versa Director discloses the full filenam...
CVE-2025-23171
CVE-2025-23171 affects Versa Director SD-WAN orchestration platform. The vulnerability arises from improper restriction of file upload permissions, where the UI may not reflect upload capability, yet uploads succeed and the system discloses full filenames of temporary files (including UUID prefix...