TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/fileupload endpoint to upload files. However, the application doesn't properly sanitize the input to this endpoint, ultimately allowing path traversal sequences to be included. This can be used to write to any filename with any file type at any location on the local server, ultimately allowing execution of arbitrary code.
References
| Link | Resource |
|---|---|
| https://github.com/MrTuxracer/advisories/blob/master/CVEs/CVE-2025-27224.txt | Exploit Third Party Advisory |
| https://www.rcesecurity.com/2025/09/when-audits-fail-four-critical-pre-auth-vulnerabilities-in-trufusion-enterprise/ | Third Party Advisory Exploit |
| https://www.rocketsoftware.com/products/rocket-b2b-supply-chain-integration/rocket-trufusion-enterprise | Product |
Configurations
History
31 Oct 2025, 20:34
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Rocketsoftware
Rocketsoftware trufusion Enterprise |
|
| CPE | cpe:2.3:a:rocketsoftware:trufusion_enterprise:*:*:*:*:*:*:*:* | |
| References | () https://github.com/MrTuxracer/advisories/blob/master/CVEs/CVE-2025-27224.txt - Exploit, Third Party Advisory | |
| References | () https://www.rcesecurity.com/2025/09/when-audits-fail-four-critical-pre-auth-vulnerabilities-in-trufusion-enterprise/ - Third Party Advisory, Exploit | |
| References | () https://www.rocketsoftware.com/products/rocket-b2b-supply-chain-integration/rocket-trufusion-enterprise - Product |
28 Oct 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-20 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
27 Oct 2025, 17:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-10-27 17:15
Updated : 2025-10-31 20:34
NVD link : CVE-2025-27224
Mitre link : CVE-2025-27224
CVE.ORG link : CVE-2025-27224
JSON object : View
Products Affected
rocketsoftware
- trufusion_enterprise
CWE
CWE-20
Improper Input Validation