Unrated severityNVD Advisory· Published Jan 28, 2026· Updated Jan 28, 2026

Unauthenticated Remote File Download in Explorance Blue

CVE-2025-57795

Description

Explorance Blue versions prior to 8.14.13 contain an authenticated remote file download vulnerability in a web service component. In default configurations, this flaw can be leveraged to achieve remote code execution.

Affected products

Explorance/Bluellm-fuzzy2 versions
<8.14.13+ 1 more
- (no CPE)range: <8.14.13
- (no CPE)range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/mandiant/Vulnerability-Disclosures/blob/master/2026/MNDT-2026-0004.mdmitrethird-party-advisory
online-help.explorance.com/blue/articles/security-advisories-(january-2026)mitrevendor-advisory
online-help.explorance.com/blue/articles/security-advisory:-cve-2025-57795mitrevendor-advisory
www.explorance.com/products/bluemitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000