Login Sign Up

CVE-2025-25048

6.5 MEDIUM
Path Traversal

📋 TL;DR

This vulnerability allows authenticated users to upload files to restricted directories in IBM Jazz Foundation due to improper path neutralization. It affects IBM Jazz Foundation versions 7.0.2 through 7.0.2 iFix033, 7.0.3 through 7.0.3 iFix012, and 7.1.0 through 7.1.0 iFix002.

💻 Affected Systems

Products:
  • IBM Jazz Foundation
Versions: 7.0.2 through 7.0.2 iFix033, 7.0.3 through 7.0.3 iFix012, and 7.1.0 through 7.1.0 iFix002
Operating Systems: All supported platforms
Default Config Vulnerable: ⚠️ Yes
Notes: Requires authenticated user access; affects all default configurations of affected versions.

📦 What is this software?

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

Jazz Foundation by Ibm

View all CVEs affecting Jazz Foundation →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An authenticated attacker could upload malicious files to sensitive system directories, potentially leading to remote code execution, data exfiltration, or system compromise.

🟠

Likely Case

Authenticated users could upload files to unauthorized locations, potentially overwriting critical system files or storing malicious payloads.

🟢

If Mitigated

With proper access controls and monitoring, impact would be limited to unauthorized file storage in restricted areas.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires authenticated access and knowledge of restricted directory paths; no public exploit code available as of analysis.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Apply fixes per IBM advisory: 7.0.2 iFix034+, 7.0.3 iFix013+, 7.1.0 iFix003+

Vendor Advisory: https://www.ibm.com/support/pages/node/7244014

Restart Required: No

Instructions:

1. Review IBM advisory 7244014. 2. Download appropriate iFix for your version. 3. Apply iFix following IBM installation procedures. 4. Verify fix by testing file upload functionality.

🔧 Temporary Workarounds

Restrict File Upload Permissions

all

Tighten file upload permissions and implement strict path validation for authenticated users.

Implement Web Application Firewall Rules

all

Configure WAF to block file upload requests containing directory traversal sequences.

🧯 If You Can't Patch

  • Implement strict access controls to limit which authenticated users can upload files.
  • Deploy file integrity monitoring on restricted directories to detect unauthorized uploads.

🔍 How to Verify

Check if Vulnerable:

Check Jazz Foundation version against affected ranges: 7.0.2-7.0.2.33, 7.0.3-7.0.3.12, 7.1.0-7.1.0.2

Check Version:

Check Jazz Foundation administration console or configuration files for version information

Verify Fix Applied:

Verify installed iFix version is equal to or higher than: 7.0.2 iFix034, 7.0.3 iFix013, or 7.1.0 iFix003

📡 Detection & Monitoring

Log Indicators:

  • File upload attempts with directory traversal sequences (../, ..\)
  • Unauthorized file creation in system directories
  • Failed file upload attempts with path manipulation

Network Indicators:

  • HTTP POST requests with file uploads containing path traversal patterns
  • Unusual file upload traffic from authenticated users

SIEM Query:

source="jazz_logs" AND (event="file_upload" AND (path="*../*" OR path="*..\*"))

📊 Metadata

CVE ID: CVE-2025-25048
CVSS v3 Score: 6.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
CWE: CWE-23
EPSS Score: 0.04% exploit probability (10.5th percentile)
Published: September 4, 2025
Last Updated: January 9, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-25048, you might also want to check these:

CVE-2024-24578 10.0

CVE-2024-24578 is an unauthenticated remote code execution vulnerability in RaspberryMatic/OCCU IoT ...

Same vulnerability type (CWE-23)
CVE-2023-3701 9.9

Aqua Drive version 2.4 has a relative path traversal vulnerability that allows authenticated users t...

Same vulnerability type (CWE-23)
CVE-2024-3025 9.9

This path traversal vulnerability in mintplex-labs/anything-llm allows attackers to read or delete f...

Same vulnerability type (CWE-23)