CVE-2025-22389 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS, where the application does not prope…
High CVSS: 8.0

CVE-2025-22389

An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS, where the application does not properly validate uploaded files. This allows the upload of potentially malicious file types, including .docm .html. When accessed by application users, these files can be used to execute malicious actions or compromise users' systems.
Vendor
Optimizely
Product
Optimizely Cms
CWE
CWE-434
Yayın Tarihi
2025-01-04 02:15:07
Güncelleme
2025-05-20 20:10:52
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-434 Optimizely Cms HIGH Optimizely 2025

Referanslar

https://support.optimizely.com/hc/en-us/articles/33182404079629-Content-Management-System-CMS-Security-Advisory-CMS-2025-03