CVE-2025-34508 Information

Jun 18, 2025 cve

Description

A path traversal vulnerability exists in the file dropoff functionality of ZendTo versions 6.15-7 and prior. This could allow a remote authenticated attacker to retrieve the files of other ZendTo users retrieve files on the host system or cause a denial of service.

Reference

https://horizon3.ai/attack-research/attack-blogs/cve-2025-34508-another-file-sharing-application-another-path-traversal/

CNNVD-202510-921 (Published: 2025-10-07)

Share on:

CVE-2025-34508 Information

Description

Reference

Related CNNVD