ByteOS Network

terrapack_tkservercgi

Source -

NVD

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

1Vulnerabilities found

CVE-2025-67260

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-8.8||HIGH

EPSS-0.08% / 22.86%

7 Day CHG~0.00%

Published-20 Mar, 2026 | 00:00

Updated-14 Apr, 2026 | 20:54

The Terrapack software, from ASTER TEC / ASTER S.p.A., with the indicated components and versions has a file upload vulnerability that may allow attackers to execute arbitrary code. Vulnerable components include Terrapack TkWebCoreNG:: 1.0.20200914, Terrapack TKServerCGI 2.5.4.150, and Terrapack TpkWebGIS Client 1.0.0.

Vendor-aster-te n/a

Product-terrapack_tkwebcoreng terrapack_tpkwebgis terrapack_tkservercgi n/a

CWE ID-CWE-434

Unrestricted Upload of File with Dangerous Type