ГлавнаяУязвимости → CVE-2025-23410
9.8критическая

CVE-2025-23410

Описание

When uploading organism or sequence data via the web interface, GMOD Apollo will unzip and inspect the files and will not check for path traversal in supported archive types.

CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-25-063-07