CVE-2025-59818

This vulnerability allows authenticated attackers to execute arbitrary commands on the underlying system using the file name of an uploaded file.

Published Date :

Last Modified :

Source :

The following products are affected by CVE-2025-59818 vulnerability.

Vendors	Products
Zenitel	Tcis-3 Tcis-3+ Tcis-3 Firmware

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-59818.

URL	Resource
https://wiki.zenitel.com/wiki/Turbine_9.3_-_Release_notes
https://wiki.zenitel.com/wiki/VSF-Display_Series_9.3_Release_Notes
https://wiki.zenitel.com/wiki/VSF-Fortitude6_9.3_Release_Notes
https://wiki.zenitel.com/wiki/VSF-Fortitude8_9.3_Release_Notes
https://wiki.zenitel.com/wiki/ZIPS_9.3_-_Release_notes
https://www.zenitel.com/sites/default/files/2025-12/A100K12333%20Zenitel%20Security%20Advisory.pdf

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact