CNNVD-202508-224 Information

Aug 04, 2025 cve

CNNVD ID

CNNVD-202508-224

CVE-2025-8516

CNNVD Published: 2025-08-04

Description (Chinese)

Kingdee Cloud-Starry-Sky Enterprise Edition是中国金蝶（Kingdee）公司的一个面向成长型企业的数字化转型解决方案。 Kingdee Cloud-Starry-Sky Enterprise Edition 8.2及之前版本存在路径遍历漏洞，该漏洞源于对参数filePath的错误操作导致路径遍历。

Description (English)

Kingdee Cloud-Starry-Sky Enterprise Education is a digital transformation solution for growth-oriented enterprises in Kingdee, China. Kingdee Cloud-Starry-Sky Enterprise Edition 8.2 and previous versions have path-to-path loopholes, which stem from the error in the application of the parameter filePath.

Hazard Level

High

Vulnerability Type

路径遍历

Published

2025-08-04

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.318642 https://vip.kingdee.com/link/s/ZgAmJ https://vuldb.com/?submit.601912 https://vuldb.com/?submit.573678 https://wx.mail.qq.com/s?k=hk3Fixc6Z1cKMI9rge https://vuldb.com/?id.318642 https://access.redhat.com/security/cve/cve-2025-8516

Share on: