CVE-2025-53900
- EPSS 0.03%
- Veröffentlicht 29.11.2025 02:25:34
- Zuletzt bearbeitet 03.12.2025 17:49:10
Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, an unfavourable definition of roles and permissions in Kiteworks MFT on managing Connections could lead to unexpected escalation of privileges for authorized users...
CVE-2025-53899
- EPSS 0.05%
- Veröffentlicht 29.11.2025 02:25:23
- Zuletzt bearbeitet 03.12.2025 17:48:48
Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, the back-end of Kiteworks MFT is vulnerable to an incorrectly specified destination in a communication channel which allows an attacker with administrative privile...
CVE-2025-53897
- EPSS 0.02%
- Veröffentlicht 29.11.2025 02:24:36
- Zuletzt bearbeitet 03.12.2025 17:48:27
Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, this vulnerability could allow an external attacker to gain access to log information from the system by tricking an administrator into browsing a specifically cra...
CVE-2025-53896
- EPSS 0.03%
- Veröffentlicht 29.11.2025 02:24:18
- Zuletzt bearbeitet 02.12.2025 20:08:48
Kiteworks MFT orchestrates end-to-end file transfer workflows. Prior to version 9.1.0, a bug in Kiteworks MFT could cause under certain circumstances that a user's active session would not properly time out due to inactivity. This issue has been patc...