CVE-2025-70995

{"id": "CVE-2025-70995", "cveTags": [], "metrics": {}, "published": "2026-03-05T21:16:13.977", "references": [{"url": "https://docs.arandasoft.com/asdk-api/pages/V1.9/descripcion/adjuntar_archivos.html", "source": "[email protected]"}, {"url": "https://github.com/0xcronos/CVE/blob/main/CVE-2025-70995/README.md", "source": "[email protected]"}], "vulnStatus": "Received", "descriptions": [{"lang": "en", "value": "An issue in Aranda Service Desk Web Edition (ASDK API 8.6) allows authenticated attackers to achieve remote code execution due to improper validation of uploaded files. An authenticated user can upload a crafted web.config file by sending a crafted POST request to /ASDKAPI/api/v8.6/item/addfile, which is processed by the ASP.NET runtime. The uploaded configuration file alters the execution context of the upload directory, enabling compilation and execution of attacker-controlled code (e.g., generation of an .aspx webshell). This allows remote command execution on the server without user interaction beyond authentication, impacting both On-Premise and SaaS deployments."}], "lastModified": "2026-03-05T21:16:13.977", "sourceIdentifier": "[email protected]"}