CVE-2025-1421 – Konsola Proget Remote Code Execution Vulnerability

CVE ID : CVE-2025-1421

Published : May 21, 2025, 1:16 p.m. | 1 hour, 56 minutes ago

Description : Data provided in a request performed to the server while activating a new device are put in a database. Other high privileged users might download this data as a CSV file and corrupt their PC by opening it in a tool such as Microsoft Excel. The attacker could gain remote access to the user’s PC.

This issue has been fixed in 2.17.5 version of Konsola Proget (server part of the MDM suite).

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…