CVE-2025-26787

CVE-2025-26787 affects Keyfactor SignServer prior to 7.2. The issue arises from a logic error in the SignServer container startup routine: the Admin CLI command intended to configure certificate access at the initial startup is executed on every container restart, resetting the access policy to "...

CVE-2025-47220

Keyfactor SignServer (versions prior to 7.3.2) contains a local file enumeration vulnerability in the VISIBLE_SIGNATURE_CUSTOM_IMAGE_PATH used by PDFSigner and PAdESSigner. An admin user can set this path without restrictions; if the path points to an existing file readable by the application ser...

CVE-2025-47221

CVE-2025-47221 : Keyfactor SignServer versions before 7.3.2 contain an arbitrary file write flaw. The ARCHIVETODISK_FILENAME-PATTERN, ARCHIVETODISK_PATH_BASE, and ARCHIVETODISK_PATH_PATTERN properties can be set to any path, enabling a user with admin access to write files in arbitrary server dir...

CVE-2025-47222

Keyfactor SignServer is affected in versions prior to 7.3.2 by a class name enumeration vulnerability that allows information about loaded classes to be exposed to the client side when setting a chosen class name in properties requiring a class path. The issue arises from an unexpected difference...