1. Home
  2. CVE Database
  3. CVE-2025-1421
NONE · 0

CVE-2025-1421

Data provided in a request performed to the server while activating a new device are put in a database. Other high privileged users might download this data as a CSV file and corrupt their PC by openi...

Vulnerability Description

Data provided in a request performed to the server while activating a new device are put in a database. Other high privileged users might download this data as a CSV file and corrupt their PC by opening it in a tool such as Microsoft Excel. The attacker could gain remote access to the user's PC. This issue has been fixed in 2.17.5 version of Konsola Proget (server part of the MDM suite).

Related Weaknesses (CWE)

CWE-1236

References

FAQ

What is CVE-2025-1421?

CVE-2025-1421 is a documented vulnerability. Data provided in a request performed to the server while activating a new device are put in a database. Other high privileged users might download this data as a CSV file and corrupt their PC by openi...

How severe is CVE-2025-1421?

CVSS scoring is not yet available for CVE-2025-1421. Check NVD for updates.

Is there a patch for CVE-2025-1421?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.