CVE Catalog

CVE-2025-69123

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Summary

Versions of Snow Club up to 1.1 are vulnerable to unauthenticated local file inclusion. An attacker can exploit this vulnerability to gain access to system files.

Risk Assessment

Organizations may be exposed to the disclosure of sensitive data and potential system takeover. The lack of authentication increases the risk of local attacks.

Recommendation

It is recommended to upgrade to the latest version of Snow Club to mitigate this vulnerability. Additionally, monitoring access to system files is advised.

Original NVD description (English source)

Unauthenticated Local File Inclusion in Snow Club <= 1.1 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS