- Description
- The web management interface of Okcat Parking Management Platform from ZONG YU has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
- Source
- twcert@cert.org.tw
- NVD status
- Awaiting Analysis
- CNA Tags
- unsupported-when-assigned
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- twcert@cert.org.tw
- CWE-434
- Hype score
- Not currently trending
CVE-2025-4556 (CVSS:9.3, CRITICAL) is Awaiting Analysis. The web management interface of Okcat Parking Management Platform from ZONG YU has an Arbitrary File Upload vulnerabilit..https://t.co/DzAUjLinLn #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
17 May 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-4556: CRITICAL] Okcat Parking Management Platform by ZONG YU has a critical Arbitrary File Upload vulnerability in its web management interface, enabling remote attackers to execute arbitrary code on...#cve,CVE-2025-4556,#cybersecurity https://t.co/nLh9Th8BaM https://t.
@CveFindCom
12 May 2025
56 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes