CVE-2025-20075

Summary

Server-side request forgery (SSRF) vulnerability exists in FileMegane versions above 3.0.0.0 prior to 3.4.0.0. Executing arbitrary backend Web API requests could potentially lead to rebooting the services.

Affected Software

VendorProductVersion RangeStatus
JIP InfoBridge Co., Ltd.FileMeganeVersions above 3.0.0.0 prior to 3.4.0.0affected

Weaknesses

  • CWE-918: Server-side request forgery (SSRF)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References