CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-53900

Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, an unfavourable definition of roles and permissions in Kiteworks MFT on managing Connections could lead to unexpected escalation of privileges for authorized users. This issue has been patched in version 9.1.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.9%

CVSS Severity

CVSS v3 Score 6.5

References

https://github.com/kiteworks/security-advisories/security/advisories/GHSA-gjq3-8v6p-2h6h

Products affected by CVE-2025-53900

Accellion » Kiteworks Managed File Transfer » Version: N/A

cpe:2.3:a:accellion:kiteworks_managed_file_transfer:-
Accellion » Kiteworks Managed File Transfer » Version: 7.6

cpe:2.3:a:accellion:kiteworks_managed_file_transfer:7.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-53900

Products

Pricing

Contact Us