CVE-2025-67223

HIGH

Aranda Service Desk <8.3.12 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-67223. PoCs published by brandonperezlara.

AI-analyzed exploit summary The repository contains a functional Python script that exploits CVE-2025-67223, an information disclosure vulnerability in Aranda Service Desk. The script automates the retrieval of log files from predictable paths and extracts sensitive file paths for unauthorized access.

Description

The Aranda File Server (AFS) component in Aranda Software Aranda Service Desk before 8.3.12 stores daily activity logs with predictable names in a publicly accessible directory, which allows unauthenticated remote attackers to obtain direct virtual paths of uploaded files and bypass access controls to download sensitive documents containing PII.

Exploits (1)

github WORKING POC
by brandonperezlara · pythonpoc
https://github.com/brandonperezlara/CVE-2025-67223

The repository contains a functional Python script that exploits CVE-2025-67223, an information disclosure vulnerability in Aranda Service Desk. The script automates the retrieval of log files from predictable paths and extracts sensitive file paths for unauthorized access.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Aranda Service Desk (AFS module) < 8.3.12
No auth needed
Prerequisites: Access to the target URL · Predictable log file paths
devstral-2 · analyzed Apr 28, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 7.5
EPSS 0.0063
EPSS Percentile 45.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-377 CWE-532
Status published
Published Apr 28, 2026
Tracked Since Apr 28, 2026