CVE-2025-68916_CVE-2025-68916

9.1 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Description

Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory traversal for file upload with resultant code execution.

AI Analysis

Directory traversal vulnerability in Riello UPS NetMan 208 Application before 1.12 allowing file upload with resultant code execution

Basic Information

ID CVE-2025-68916

Source mitre

Published Dec 24, 2025 at 19:43

Modified Dec 24, 2025 at 20:05

Affected Product

Vendor Riello

Product NetMan

Version 208

Affected Versions Riello NetMan 208

CWE Classification

CWE-25

AI Assessment

AI Score 9.1 / 10

AI Severity Critical

Vendor Riello

Product NetMan 208

Version before 1.12

References

github.com /gerico-lab/riello-multiple-vulnerabilities-2025

{
    "lastseen": "",
    "description": "Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory traversal for file upload with resultant code execution.",
    "published": "2025-12-24T19:43:25.350Z",
    "modified": "2025-12-24T20:05:20.432Z",
    "type": "cve",
    "title": "CVE-2025-68916",
    "source": "mitre",
    "references": "https://github.com/gerico-lab/riello-multiple-vulnerabilities-2025",
    "id": "CVE-2025-68916",
    "bulletinFamily": "",
    "cwe": [
        "CWE-25"
    ],
    "cvelist": null,
    "sourceData": "Riello NetMan 208",
    "sourceHref": "",
    "cvss": {
        "score": 9.1,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "NetMan",
    "version": "208",
    "vendor": "Riello",
    "ai_description": "Directory traversal vulnerability in Riello UPS NetMan 208 Application before 1.12 allowing file upload with resultant code execution",
    "ai_severity": "Critical",
    "ai_vendor": "Riello",
    "ai_product": "NetMan 208",
    "ai_version": "before 1.12",
    "ai_score": 9.1
}