| TVN ID | TVN-202507016 |
|---|---|
| CVE ID | CVE-2025-8323 |
| CVSS | 8.8 (High) CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Affected Products | e-School |
| Description | The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server. |
| Solution | If your school runs system on-premises, please contact the vendor to confirm the update status or consider restricting access to the campus network only |
| Credit | JUI-PENG,YEN |
| Public Date | 2025-07-30 |
:::