CNNVD-202508-274 Information

CNNVD ID

CNNVD-202508-274

Related CVE

CVE-2025-46094

• CNNVD Published: 2025-08-04

Description (Chinese)

Liquidfiles是美国Liquidfiles公司的一个用于公司和组织的大型安全文件传输和共享的存储服务。 Liquidfiles 4.1.2之前版本存在安全漏洞，该漏洞源于可通过配置本地可执行文件路径名实现目录遍历。

Description (English)

Liquidfiles is a large, secure file transfer and shared storage service for companies and organizations of the United States company Liquidfiles. There was a security loophole in the previous version of Liquidfiles 4.1.2, which stemmed from the fact that directory history could be achieved by configuring the pathname of the local executable.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Liquidfiles

Published

2025-08-04

Last Modified

2026-02-24

References

https://docs.liquidfiles.com/release_notes/version_4-1-x.html https://projectblack.io/blog/liquidfiles-vulnerability-authenticated-rce/

Patch

https://docs.liquidfiles.com/release_notes/version_4-2-x.html