CNNVD-202512-4250 Information

CNNVD ID

CNNVD-202512-4250

Related CVE

CVE-2019-25257

• CNNVD Published: 2025-12-24

Description (Chinese)

LogicalDOC Enterprise是意大利LogicalDOC公司的一个文档管理系统。 LogicalDOC Enterprise 7.7.4版本存在安全漏洞，该漏洞源于修改系统设置时对二进制路径验证不足，可能导致操作系统命令执行。

Description (English)

LogicalDOC Enterprise is a document management system for LogicalDOC in Italy. There is a security loophole in version 7.7.4 of LogicalDOC Enterprise, which results from inadequate verification of binary paths during modification of system settings, which may result in the performance of operating system commands.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

LogicalDOC

Published

2025-12-24

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/44021 https://www.logicaldoc.com https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5452.php