CNNVD-202508-3160 Information

CNNVD ID

CNNVD-202508-3160

Related CVE

CVE-2025-34163

• CNNVD Published: 2025-08-27

Description (Chinese)

Dongsheng Logistics Software是中国东胜（Dongsheng）公司的一款物流管理系统。 Dongsheng Logistics Software存在安全漏洞，该漏洞源于/CommMng/Print/UploadMailFile端点未验证文件类型，可能导致远程代码执行。

Description (English)

Dongsheng Logistics Software is a logistics management system for Dongsheng, China. There is a security loophole in Dongsheng Logistics Software, which originates from/CommMng/Print/UploadMailFile peer unverified file type and may result in remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

道尔智控

Published

2025-08-27

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/dongsheng-logisitics-software-unauth-arbitrary-file-upload https://cn-sec.com/archives/4243708.html http://www.dongshengsoft.com/ https://nvd.nist.gov/vuln/detail/CVE-2025-34163