Unrated severityCISA KEVNVD Advisory· Published Sep 19, 2025· Updated Feb 26, 2026
CVE-2025-59689
CVE-2025-59689
Description
Libraesva ESG 4.5 through 5.5.x before 5.5.7 allows command injection via a compressed e-mail attachment. For ESG 5.0 a fix has been released in 5.0.31. For ESG 5.1 a fix has been released in 5.1.20. For ESG 5.2 a fix has been released in 5.2.31. For ESG 5.4 a fix has been released in 5.4.8. For ESG 5.5. a fix has been released in 5.5.7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 4.5
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.