CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-53897

Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, this vulnerability could allow an external attacker to gain access to log information from the system by tricking an administrator into browsing a specifically crafted fake page of Kiteworks MFT. This issue has been patched in version 9.1.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.5%

CVSS Severity

CVSS v3 Score 6.8

References

https://github.com/kiteworks/security-advisories/security/advisories/GHSA-cxwc-7899-3h4m

Products affected by CVE-2025-53897

Accellion » Kiteworks Managed File Transfer » Version: N/A

cpe:2.3:a:accellion:kiteworks_managed_file_transfer:-
Accellion » Kiteworks Managed File Transfer » Version: 7.6

cpe:2.3:a:accellion:kiteworks_managed_file_transfer:7.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-53897

Products

Pricing

Contact Us