CVE-2025-13875 in oci-helper정보

요약

\~에 의해 MITRE • 2025. 12. 02.

A weakness has been identified in Yohann0617 oci-helper up to 3.2.4. This issue affects the function addCfg of the file src/main/java/com/yohann/ocihelper/service/impl/OciServiceImpl.java of the component OCI Configuration Upload. Executing manipulation of the argument File can lead to path traversal. It is possible to launch the attack remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

VulDB

공개

2025. 12. 02.

모더레이션

수락

항목

VDB-334031

CPE

준비됨

CWE

CWE-22 (확인됨)

익스플로잇

다운로드

CVSS

6.3 (CNA)

EPSS

0.00061

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-13875
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-13875
CVE Details	https://www.cvedetails.com/cve/CVE-2025-13875/

◂ 이전 개요 다음 ▸

Do you need the next level of professionalism?

Upgrade your account now!