WellChoose|BatchSignCS – Arbitrary File Write through Path Traversal

July 13, 2025 invoker category_cve

CVE Details

Basic Information

Title WellChoose|BatchSignCS – Arbitrary File Write through Path Traversal
Type cve
Published 2025-07-14T03:00:59.905Z
Modified 2025-07-14T03:00:59.905Z

Product Information

Vendor WellChoose
Product BatchSignCS
Version 0

CVSS Information

Base Score 8.8 (HIGH)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Analysis

AI Description BatchSignCS, a Windows application, has a vulnerability allowing remote attackers to write arbitrary files and potentially execute code if a user visits a malicious website.
AI Severity High
AI Vendor WellChoose
AI Product BatchSignCS
AI Version 0

Affected Products

  • WellChoose BatchSignCS 0

Additional Information

CWE List CWE-23
Source twcert

Description

BatchSignCS, a background Windows application developed by WellChoose, has an Arbitrary File Write vulnerability. If a user visits a malicious website while the application is running, remote attackers can write arbitrary files to any path and potentially lead to arbitrary code execution.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.