CVE-2025-3485
published 2025-06-06CVE-2025-3485: Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on…
PriorityP267high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.78%
75.5th percentile
Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability.
The specific flaw exists within the implementation of the extractFileFromZip method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-26524.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| allegra | allegra | — | — |
| alltena | allegra | < 8.1.2 | 8.1.2 |
| msrc | microsoft_edge | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.07.2HIGHCVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
vendor_msrc9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-w2hq-6wrg-qrh6: Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability
ghsa_unreviewed·2025-06-06
CVE-2025-3485 [HIGH] CWE-22 GHSA-w2hq-6wrg-qrh6: Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability
Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability.
The specific flaw exists within the implementation of the extractFileFromZip method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-26524.
Microsoft
Chromium: CVE-2025-10501 Use after free in WebRTC
vendor_msrc·2025-09-09·CVSS 8.8
CVE-2025-10501 [HIGH] Chromium: CVE-2025-10501 Use after free in WebRTC
Chromium: CVE-2025-10501 Use after free in WebRTC
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.81
09/19/2025
140.0.7339.186
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In
Microsoft
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
vendor_msrc·2025-09-09·CVSS 7.6
CVE-2025-59251 [HIGH] CWE-121 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.81
09/19/2025
140.0.7339.186
FAQ: According to the CVSS metric, the attack vector is network (AV:N) and the user interaction is required (UI:R). What is the target context of the remote code execution?
This attack requires an authenticated client to click a link so that an unauthenticated attacker can initiate remote code execution.
FAQ: According to the CVSS metrics, successful exploitation of this vulnerability could lead to major loss of confidentiality (C:H), and integrity (I:H), and some loss of availability (A:L). What does that mean for this vulnerability?
An attacker who successfu
Microsoft
Chromium: CVE-2025-10502 Heap buffer overflow in ANGLE
vendor_msrc·2025-09-09·CVSS 8.8
CVE-2025-10502 [HIGH] Chromium: CVE-2025-10502 Heap buffer overflow in ANGLE
Chromium: CVE-2025-10502 Heap buffer overflow in ANGLE
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.81
09/19/2025
140.0.7339.186
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
Microsoft
Chromium: CVE-2025-10892 Integer overflow in V8
vendor_msrc·2025-09-09·CVSS 8.8
CVE-2025-10892 [HIGH] Chromium: CVE-2025-10892 Integer overflow in V8
Chromium: CVE-2025-10892 Integer overflow in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.94
09/25/2025
140.0.7339.208
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In yo
Microsoft
Chromium: CVE-2025-10500 Use after free in Dawn
vendor_msrc·2025-09-09·CVSS 8.8
CVE-2025-10500 [HIGH] Chromium: CVE-2025-10500 Use after free in Dawn
Chromium: CVE-2025-10500 Use after free in Dawn
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.81
09/19/2025
140.0.7339.186
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In yo
Microsoft
Chromium: CVE-2025-10200 Use after free in Serviceworker
vendor_msrc·2025-09-09·CVSS 8.8
CVE-2025-10200 [HIGH] Chromium: CVE-2025-10200 Use after free in Serviceworker
Chromium: CVE-2025-10200 Use after free in Serviceworker
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.66
09/11/2025
140.0.7339.133
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browse
Microsoft
Chromium: CVE-2025-10585 Type Confusion in V8
vendor_msrc·2025-09-09·CVSS 9.8
CVE-2025-10585 [CRITICAL] Chromium: CVE-2025-10585 Type Confusion in V8
Chromium: CVE-2025-10585 Type Confusion in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2025-10585 exists in the wild.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.81
09/19/2025
140.0.7339.186
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is n
Microsoft
Chromium: CVE-2025-10890 Side-channel information leakage in V8
vendor_msrc·2025-09-09·CVSS 9.1
CVE-2025-10890 [CRITICAL] Chromium: CVE-2025-10890 Side-channel information leakage in V8
Chromium: CVE-2025-10890 Side-channel information leakage in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.94
09/25/2025
140.0.7339.208
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the
Microsoft
Chromium: CVE-2025-10891 Integer overflow in V8
vendor_msrc·2025-09-09·CVSS 8.8
CVE-2025-10891 [HIGH] Chromium: CVE-2025-10891 Integer overflow in V8
Chromium: CVE-2025-10891 Integer overflow in V8
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.94
09/25/2025
140.0.7339.208
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In yo
Microsoft
Chromium: CVE-2025-10201 Inappropriate implementation in Mojo
vendor_msrc·2025-09-09·CVSS 8.8
CVE-2025-10201 [HIGH] Chromium: CVE-2025-10201 Inappropriate implementation in Mojo
Chromium: CVE-2025-10201 Inappropriate implementation in Mojo
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: What is the version information for this release?
Microsoft Edge Version
Date Released
Based on Chromium Version
140.0.3485.66
09/11/2025
140.0.7339.133
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the b
Suricata
ET WEB_SPECIFIC_APPS D-Link SSDP ST Header Command Injection Attempt (CVE-2025-10629, CVE-2026-3485)
suricata·2025-09-18·CVSS 5.3
CVE-2025-10629 [MEDIUM] ET WEB_SPECIFIC_APPS D-Link SSDP ST Header Command Injection Attempt (CVE-2025-10629, CVE-2026-3485)
ET WEB_SPECIFIC_APPS D-Link SSDP ST Header Command Injection Attempt (CVE-2025-10629, CVE-2026-3485)
Rule: alert udp any any -> $HOME_NET 1900 (msg:"ET WEB_SPECIFIC_APPS D-Link SSDP ST Header Command Injection Attempt (CVE-2025-10629, CVE-2026-3485)"; flow:established,to_server; content:"M-SEARCH "; depth:9; fast_pattern; content:"ST|3a|"; distance:0; pcre:"/^[^\x26]*?(?:(?:\x3b|%3[Bb])|(?:\x0a|%0[Aa])|(?:\x60|%60)|(?:\x7c|%7[Cc])|(?:\x24|%24))+/R"; reference:url,github.com/i-Corner/cve/issues/30; reference:cve,2025-10629; reference:cve,2026-3485; classtype:attempted-admin; sid:2064797; rev:1; metadata:affected_product D_Link, attack_target Networking_Equipment, tls_state plaintext, created_at 2025_09_18, cve CVE_2025_10629, deployment Perimeter, deployment Internal, performance_impact Mo
No public exploits indexed.
No writeups or analysis indexed.
2025-06-06
Published