CVE-2025-34119

HIGH

EasyCafe Server <2.2.14 - Info Disclosure

Title source: llm

Description

A remote file disclosure vulnerability exists in EasyCafe Server 2.2.14, exploitable by unauthenticated remote attackers via TCP port 831. The server listens for a custom protocol where opcode 0x43 can be used to request arbitrary files by absolute path. If the file exists and is accessible, its content is returned without authentication. This flaw allows attackers to retrieve sensitive files such as system configuration, password files, or application data.

Exploits (2)

exploitdb WORKING POC VERIFIED

by R-73eN · pythonremotewindows

https://www.exploit-db.com/exploits/39102

View Code ZIP pw:eip

metasploit WORKING POC

by R-73eN, bcoles · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/misc/easycafe_server_fileaccess.rb

View Code ZIP pw:eip

References (3)

[Various Sources] https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/misc/easycafe_server_fileaccess.rb

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/39102

[Third Party Advisory] https://www.vulncheck.com/advisories/easy-cafe-server-remote-file-disclosure

Scores

CVSS v4 8.8

EPSS 0.2956

EPSS Percentile 96.6%

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Details

CWE

CWE-306 CWE-668

Status published

Products (1)

Tinasoft/EasyCafe Server 2.2.14

Published Jul 16, 2025

Tracked Since Feb 18, 2026