CVE-2025-32959

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Apr 22, 2025

Updated: Apr 23, 2025

CWE ID 770

Summary

CVE-2025-32959 affects the CUBA Platform, a framework used for enterprise application development, prior to version 7.2.23. This vulnerability allows an attacker to upload excessively large files to the local file storage, causing the server to run out of space and return an HTTP 500 error, leading to a denial of service. Version 7.2.23 includes a patch for this issue. As a workaround, users can refer to the information provided on the Jmix documentation website.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/5O17LH
https://www.cve.org/CVERecord?id=CVE-2025-32959
https://nvd.nist.gov/vuln/detail/CVE-2025-32959

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2025-32959

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations