Unrated severityNVD Advisory· Published Nov 5, 2025· Updated Dec 1, 2025
CVE-2025-63601
CVE-2025-63601
Description
Snipe-IT before version 8.3.3 contains a remote code execution vulnerability that allows an authenticated attacker to upload a malicious backup file containing arbitrary files and execute system commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Snipe-IT/Snipe-ITdescription
- Range: <=8.3.2
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.