VYPR
Medium severity6.3NVD Advisory· Published Dec 7, 2025· Updated Apr 29, 2026

CVE-2025-14182

CVE-2025-14182

Description

A vulnerability has been found in Sobey Media Convergence System 2.0/2.1. This vulnerability affects unknown code of the file /sobey-mchEditor/watermark/upload. The manipulation of the argument File leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Affected products

3
  • cpe:2.3:a:sobey:media_convergence_system:2.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:sobey:media_convergence_system:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:sobey:media_convergence_system:2.1:*:*:*:*:*:*:*
    • (no CPE)range: >= 2.0 <= 2.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.