High severityNVD Advisory· Published Dec 15, 2025· Updated Apr 15, 2026
CVE-2025-34181
CVE-2025-34181
Description
NetSupport Manager < 14.12.0001 contains an arbitrary file write vulnerability in its Connectivity Server/Gateway PUTFILE request handler. An attacker with a valid Gateway Key can supply a crafted filename containing directory traversal sequences to write files to arbitrary locations on the server. This can be leveraged to place attacker-controlled DLLs or executables in privileged paths and achieve remote code execution in the context of the NetSupport Manager connectivity service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <14.12.0001
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.