VYPR
Unrated severityNVD Advisory· Published Aug 8, 2025· Updated Feb 26, 2026

Path Traversal leading to RCE

CVE-2025-8356

Description

In Xerox FreeFlow Core version 8.0.4, an attacker can exploit a Path Traversal vulnerability to access unauthorized files on the server. This can lead to Remote Code Execution (RCE), allowing the attacker to run arbitrary commands on the system.

Affected products

2
  • Xerox/FreeFlow Corellm-fuzzy2 versions
    = 8.0.4+ 1 more
    • (no CPE)range: = 8.0.4
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.