CNNVD-202507-2024 Information
CNNVD ID
CNNVD-202507-2024
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Flexense DiskBoss Enterprise是Flexense公司的一款文件管理工具。 Flexense DiskBoss Enterprise 7.4.28版本、7.5.12版本和8.2.14版本存在安全漏洞,该漏洞源于HTTP GET请求路径组件边界检查不当,可能导致栈缓冲区溢出。
Description (English)
Flexense DiskBoss Enterprise is a document management tool for Flexense. Flexense DiskBoss Enterprise 7.4.28, 7.5.12 and 8.2.14 have a security loophole, which stems from the improper inspection of the road components requested by HTTP GET, which could lead to a spill over the buffer zone.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Flexense
Published
2025-07-15
Last Modified
2026-02-24
References
https://www.exploit-db.com/exploits/40869 https://www.vulncheck.com/advisories/diskboss-enterprise-buffer-overflow-rce https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ https://www.exploit-db.com/exploits/42395 https://nvd.nist.gov/vuln/detail/CVE-2025-34105
Patch
https://www.diskboss.com/downloads.html
Share on: