CVE-2025-34097

EPSS 32.11%
Veröffentlicht 10.07.2025 19:12:37
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle disclosure@vulncheck.com
CVE-Watchlists
Login
Unerledigt
Login

An unrestricted file upload vulnerability exists in ProcessMaker versions prior to 3.5.4 due to improper handling of uploaded plugin archives. An attacker with administrative privileges can upload a malicious .tar plugin file containing arbitrary PHP code. Upon installation, the plugin’s install() method is invoked, resulting in execution of attacker-supplied PHP code on the server with the privileges of the web server user. This vulnerability can be chained with CVE-2022-38577 — a privilege escalation flaw in the user profile page — to achieve full remote code execution from a low-privileged account.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerProcessMaker Inc.

≫

Produkt ProcessMaker

Default Statusunaffected

Version < 3.5.4

Version *

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	32.11%	0.968

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
disclosure@vulncheck.com	8.6	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/multi/http/processmaker_plugin_upload.rb

https://wiki.processmaker.net/3.0/Plugin_Development

https://www.fortiguard.com/encyclopedia/ips/45757

https://www.exploit-db.com/exploits/44399

https://process-maker-authenticated-plugin-upload-rce

https://vulncheck.com/advisories/process-maker-authenticated-plugin-upload-rce

https://nvd.nist.gov/vuln/detail/CVE-2025-34097

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-34097

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-34097

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-34097