CRITICAL🇵🇱 Wersja polska

CVE-2025-63601

CVSS 9.9v3.1pub. 2025-11-05upd. 2025-12-01

Snipe-IT before version 8.3.3 contains a remote code execution vulnerability that allows an authenticated attacker to upload a malicious backup file containing arbitrary files and execute system commands.

🤖 AI Analysis
How it works

The vulnerability results from insufficient validation of uploaded backup files (CWE-434 — unrestricted upload of file with dangerous type). An authenticated attacker uploads a malicious backup file containing arbitrary files that, after processing by the application, are placed on the server. Subsequently, the attacker is able to execute arbitrary system commands in the context of the application server process. The attack vector is network-based, requires no victim interaction, and does not require high privileges (a regular user account is sufficient).

Impact

An attacker can gain full control of the server, including access to sensitive data (C:H), modification or deletion of data (I:H), and prevention of system operation (A:H). Due to the changed scope (S:C), the impact may extend beyond the Snipe-IT application itself and include other systems in the environment.

Mitigation & patch

Snipe-IT should be immediately updated to version 8.3.3 or later, available at: https://github.com/grokability/snipe-it/releases/tag/v8.3.3. The fix was introduced as part of pull request #17966 in the official project repository.

Who is affected

Snipe-IT (Snipeitapp Snipe-IT) in all versions before 8.3.3

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Snipeitapp Snipe It

    APP
    Snipeitapp
    < 8.3.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2026-37709CRITICAL9.8PL ✓ten sam produkt

RCE w Snipe-IT — Insecure Permissions w API uploadu plików

CVE-2026-48507HIGH7.1ten sam produkt

Snipe-IT is an IT asset/license management system. A vulnerability in versions prior to 8.6.0 allows a non-adm...

CVE-2026-44832HIGH8.7ten sam produkt

Snipe-IT is an IT asset/license management system. Prior to 8.4.1, aAn authenticated user with only users.edit...

CVE-2025-15602HIGH8.7ten sam produkt

Snipe-IT versions prior to 8.3.7 contain sensitive user attributes related to account privileges that are insu...

CVE-2024-51093HIGH8.7ten sam produkt

Stored Cross-Site Scripting (XSS) vulnerability in Snipe-IT - v7.0.13 allows an attacker to upload a malicious...