CVE-2025-58431 | IceWhaleTech ZimaOS up to 1.4.1 download unnecessary privileges (GHSA-vqrw-9v9m-6g87)

A vulnerability labeled as critical has been found in IceWhaleTech ZimaOS up to 1.4.1. This issue affects some unknown processing of the file /v2_1/files/file/download. The manipulation results in execution with unnecessary privileges.

This vulnerability was named CVE-2025-58431. The attack needs to be approached locally. There is no available exploit.VulDB Recent EntriesRead More