CVE-2025-6240

Vulnerability

Overview

The vulnerability resides in the File Attachment service of Profisee, where user-supplied input is not properly sanitized. This allows an attacker to inject directory traversal sequences (e.g., ../) to access files outside the intended directory structure [1]. The root cause is improper input validation in the filesystem modules on Windows.

Exploitation

Prerequisites

Exploitation requires valid Profisee credentials and a deep knowledge of the system. An attacker must already have compromised credentials and make targeted API calls to trigger the path traversal [1]. No authentication bypass is possible; the attacker must be authenticated to the Profisee system.

Impact

Successful exploitation could lead to unauthorized access to sensitive files, including configuration files or system files. Additionally, an attacker might modify configuration or system files, potentially compromising the system's integrity [1].

Mitigation

Profisee has developed a fix and is releasing hotfixes for all supported versions, as well as version 22R2 (which is out of support). For SaaS customers, the fix will be automatically deployed during the next maintenance window [1]. Customers hosting Profisee themselves can apply the hotfix manually.