CVE-2025-3722

A path traversal vulnerability in System Information Reporter (SIR) 1.0.3 and prior allowed an authenticated high privileged user to issue malicious ePO post requests to System Information Reporter, leading to creation of files anywhere on the filesystem and possibly overwriting existing files and exposing sensitive information disclosure.
CVSS

No CVSS.

Configurations

No configuration.

History

26 Jun 2025, 11:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-06-26 11:15

Updated : 2025-06-26 18:57


NVD link : CVE-2025-3722

Mitre link : CVE-2025-3722

CVE.ORG link : CVE-2025-3722


JSON object : View

Products Affected

No product.

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')