cbcvebase.

Rocketsoftware Trufusion Enterprise vulnerabilities

8 known vulnerabilities affecting rocketsoftware/trufusion_enterprise.

Total CVEs
8
CISA KEV
0
Public exploits
4
Exploited in wild
3
Severity breakdown
CRITICAL2HIGH6

Vulnerabilities

Page 1 of 1
CVE-2025-27223P1HIGHCVSS 7.5ExploitedPoC≤ 7.10.4.02025-10-27
CVE-2025-27223 [HIGH] CWE-1004 CVE-2025-27223: TRUfusion Enterprise through 7.10.4.0 exposes the encrypted COOKIEID as an authentication mechanism TRUfusion Enterprise through 7.10.4.0 exposes the encrypted COOKIEID as an authentication mechanism for some endpoints such as /trufusionPortal/getProjectList. However, the application uses a static key to create the encrypted cookie, ultimately allowing anyone to forge cookies and gain access to sensitive internal information.
nvd
CVE-2025-27222P1HIGHCVSS 8.6ExploitedPoC≤ 7.10.4.02025-10-27
CVE-2025-27222 [HIGH] CWE-22 CVE-2025-27222: TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/getCobrandingData endpoint to retrie TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/getCobrandingData endpoint to retrieve files. However, the application doesn't properly sanitize the input to this endpoint, ultimately allowing path traversal sequences to be included. This can be used to read any local server file that is accessible by the TRUfusion user and can also be
nvd
CVE-2025-32355P2HIGHCVSS 7.3ExploitedPoCfixed in 7.10.5.02026-02-17
CVE-2025-32355 [HIGH] CWE-918 CVE-2025-32355: Rocket TRUfusion Enterprise through 7.10.4.0 uses a reverse proxy to handle incoming connections. Ho Rocket TRUfusion Enterprise through 7.10.4.0 uses a reverse proxy to handle incoming connections. However, the proxy is misconfigured in a way that allows specifying absolute URLs in the HTTP request line, causing the proxy to load the given resource.
nvd
CVE-2025-27225P2HIGHCVSS 7.5PoC≤ 7.10.4.02025-10-27
CVE-2025-27225 [HIGH] CWE-200 CVE-2025-27225: TRUfusion Enterprise through 7.10.4.0 exposes the /trufusionPortal/jsp/internal_admin_contact_login. TRUfusion Enterprise through 7.10.4.0 exposes the /trufusionPortal/jsp/internal_admin_contact_login.jsp endpoint to unauthenticated users. This endpoint discloses sensitive internal information including PII to unauthenticated attackers.
nvd
CVE-2025-59793P2CRITICALCVSS 9.9fixed in 7.10.5.02026-02-17
CVE-2025-59793 [CRITICAL] CWE-35 CVE-2025-59793: Rocket TRUfusion Enterprise through 7.10.5 exposes the endpoint at /axis2/services/WsPortalV6UpDwAxi Rocket TRUfusion Enterprise through 7.10.5 exposes the endpoint at /axis2/services/WsPortalV6UpDwAxis2Impl to authenticated users to be able to upload files. However, the application doesn't properly sanitize the jobDirectory parameter, which allows path traversal sequences to be included. This allows writing files to arbitrary local filesystem loc
nvd
CVE-2025-27224P2CRITICALCVSS 9.8≤ 7.10.4.02025-10-27
CVE-2025-27224 [CRITICAL] CWE-20 CVE-2025-27224: TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/fileupload endpoint to upload files. TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/fileupload endpoint to upload files. However, the application doesn't properly sanitize the input to this endpoint, ultimately allowing path traversal sequences to be included. This can be used to write to any filename with any file type at any location on the local server, ultimately
nvd
CVE-2022-25026P3HIGHCVSS 7.5fixed in 7.9.5.12023-01-12
CVE-2022-25026 [HIGH] CWE-918 CVE-2022-25026: A Server-Side Request Forgery (SSRF) in Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to A Server-Side Request Forgery (SSRF) in Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to gain access to sensitive resources on the internal network via a crafted HTTP request to /trufusionPortal/upDwModuleProxy.
nvd
CVE-2022-25027P3HIGHCVSS 7.5fixed in 7.9.5.12023-01-12
CVE-2022-25027 [HIGH] CWE-640 CVE-2022-25027: The Forgotten Password functionality of Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to The Forgotten Password functionality of Rocket TRUfusion Portal v7.9.2.1 allows remote attackers to bypass authentication and access restricted pages by validating the user's session token when the "Password forgotten?" button is clicked.
nvd
Rocketsoftware Trufusion Enterprise vulnerabilities | cvebase