VYPR

BBj

by BASIS International Ltd

CVEs (1)

  • CVE-2025-34320CriNov 20, 2025
    risk 0.60cvss epss 0.01

    BASIS BBj versions prior to 25.00 contain a Jetty-served web endpoint that fails to properly validate or canonicalize input path segments. This allows unauthenticated directory traversal sequences to cause the server to read arbitrary system files accessible to the account…