CVE-2025-45854 – An arbitrary file upload vulnerability in the comp

CVE ID : CVE-2025-45854

Published : June 3, 2025, 4:15 p.m. | 14 minutes ago

Description : An arbitrary file upload vulnerability in the component /server/executeExec of JEHC-BPM v2.0.1 allows attackers to execute arbitrary code via uploading a crafted file.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…