Vulnerability Details CVE-2025-54769
An authenticated, read-only user can upload a file and perform a directory traversal to have the uploaded file placed in a location of their choosing. This can be used to overwrite existing PERL modules within the application to achieve remote code execution (RCE) by an attacker.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.046
EPSS Ranking 88.9%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2025-54769
-
cpe:2.3:a:xorux:lpar2rrd:-
-
cpe:2.3:a:xorux:lpar2rrd:2.7.0
-
cpe:2.3:a:xorux:lpar2rrd:3.02
-
cpe:2.3:a:xorux:lpar2rrd:3.10
-
cpe:2.3:a:xorux:lpar2rrd:3.11
-
cpe:2.3:a:xorux:lpar2rrd:3.14
-
cpe:2.3:a:xorux:lpar2rrd:3.15
-
cpe:2.3:a:xorux:lpar2rrd:3.20
-
cpe:2.3:a:xorux:lpar2rrd:3.21
-
cpe:2.3:a:xorux:lpar2rrd:3.30
-
cpe:2.3:a:xorux:lpar2rrd:3.40
-
cpe:2.3:a:xorux:lpar2rrd:3.50
-
cpe:2.3:a:xorux:lpar2rrd:3.60
-
cpe:2.3:a:xorux:lpar2rrd:4.00
-
cpe:2.3:a:xorux:lpar2rrd:4.50
-
cpe:2.3:a:xorux:lpar2rrd:4.53
-
cpe:2.3:a:xorux:lpar2rrd:4.53-01
-
cpe:2.3:a:xorux:lpar2rrd:4.60
-
cpe:2.3:a:xorux:lpar2rrd:4.70
-
cpe:2.3:a:xorux:lpar2rrd:4.80
-
cpe:2.3:a:xorux:lpar2rrd:4.90
-
cpe:2.3:a:xorux:lpar2rrd:4.95
-
cpe:2.3:a:xorux:lpar2rrd:5.00
-
cpe:2.3:a:xorux:lpar2rrd:5.05
-
cpe:2.3:a:xorux:lpar2rrd:5.07
-
cpe:2.3:a:xorux:lpar2rrd:6.00
-
cpe:2.3:a:xorux:lpar2rrd:6.10
-
cpe:2.3:a:xorux:lpar2rrd:6.11
-
cpe:2.3:a:xorux:lpar2rrd:6.15
-
cpe:2.3:a:xorux:lpar2rrd:6.20
-
cpe:2.3:a:xorux:lpar2rrd:7.00
-
cpe:2.3:a:xorux:lpar2rrd:7.10
-
cpe:2.3:a:xorux:lpar2rrd:7.20
-
cpe:2.3:a:xorux:lpar2rrd:7.30
-
cpe:2.3:a:xorux:lpar2rrd:7.40
-
cpe:2.3:a:xorux:lpar2rrd:7.50
-
cpe:2.3:a:xorux:lpar2rrd:7.60
-
cpe:2.3:a:xorux:lpar2rrd:7.61
-
cpe:2.3:a:xorux:lpar2rrd:7.70
-
cpe:2.3:a:xorux:lpar2rrd:7.80
-
cpe:2.3:a:xorux:lpar2rrd:7.80-1
-
cpe:2.3:a:xorux:lpar2rrd:7.90
-
cpe:2.3:a:xorux:lpar2rrd:7.92
-
cpe:2.3:a:xorux:lpar2rrd:7.95
-
cpe:2.3:a:xorux:lpar2rrd:8.00
-
cpe:2.3:a:xorux:lpar2rrd:8.04