CVE-2025-9846

Summary

Unrestricted Upload of File with Dangerous Type vulnerability in TalentSys Consulting Information Technology Industry Inc. Inka.Net allows Command Injection.

This issue affects Inka.Net: before 6.7.1.

Affected Software

VendorProductVersion RangeStatus
TalentSys Consulting Information Technology Industry Inc.Inka.Net0 < 6.7.1affected

Weaknesses

  • CWE-434: CWE-434 Unrestricted Upload of File with Dangerous Type

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References