CVE-2025-8021 HIGH

CVE-2025-8021

Vendor N/A
Product files-bucket-server
Weakness CWE-22 · Path traversal
Published July 23, 2025
Last update July 23, 2025

CVSS base score

7.5/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P

What the vulnerability does

01Description

All versions of the package files-bucket-server are vulnerable to Directory Traversal where an attacker can traverse the file system and access files outside of the intended directory.

Key dates

02Disclosure timeline

July 23, 2025 CVE published
July 23, 2025 Record updated