CNNVD-202508-629 Information
Aug 06, 2025
cve
CNNVD ID
CNNVD-202508-629
Related CVE
- CNNVD Published: 2025-08-06
Description (Chinese)
Bottinelli Informatical Vedo Suite是意大利Bottinelli Informatica公司的一款面向纺织与设计行业的企业软件套件。 Bottinelli Informatical Vedo Suite 2024.17版本存在安全漏洞,该漏洞源于不安全的uploadPreviews函数可能导致任意文件上传和远程代码执行。
Description (English)
Bottinelli Informatical Vedo Suite is an enterprise software package for the textile and design industries of Bottinelli Informatica, Italy. The Bottinelli Informatical Vedo Suite 2024.17 contains a security loophole that originates from an unsafe old Previews function that may result in any file upload and remote code execution.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Bottinelli Informatica
Published
2025-08-06
Last Modified
2026-02-24
References
https://github.com/jacopoaugelli/vedo-suite-exploits http://bottinelli.com https://access.redhat.com/security/cve/cve-2025-51056
Patch
https://www.bottinelliinformatica.it/
Share on: