CVE-2025-6731
Description
A vulnerability was found in yzcheng90 X-SpringBoot up to 5.0 and classified as critical. Affected by this issue is the function uploadApk of the file /sys/oss/upload/apk of the component APK File Handler. The manipulation of the argument File leads to path traversal. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A path traversal vulnerability in X-SpringBoot's /sys/oss/upload/apk endpoint allows unauthenticated remote attackers to delete arbitrary .apk files.
The vulnerability resides in the uploadApk function of SysOssController.java (line 83). The code creates a temporary file using the filename supplied by the user without proper validation, enabling path traversal via the File parameter. [1][2]
Attackers can exploit this by sending a crafted request with a path traversal sequence (e.g., ../) in the filename to the /sys/oss/upload/apk endpoint. No authentication is required to invoke the API, allowing any remote attacker to target arbitrary .apk files on the server. [1]
Successful exploitation results in the deletion of any .apk file on the system, which can lead to denial of service or application compromise. The vendor did not respond to the disclosure, leaving the vulnerability unpatched. [1][2]
As of this report, no official patch or mitigation has been provided by the vendor. Users should restrict network access to the affected endpoint or disable the APK upload functionality if not essential.
AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1- Range: <=5.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.