CVE-2025-27224 | Rocket TRUfusion Enterprise up to 7.10.4.0 Endpoint fileupload path traversal

A vulnerability marked as critical has been reported in Rocket TRUfusion Enterprise up to 7.10.4.0. Affected by this vulnerability is an unknown functionality of the file /trufusionPortal/fileupload of the component Endpoint. This manipulation causes path traversal.

This vulnerability is tracked as CVE-2025-27224. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More