CVE-2025-62498
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-62498, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-10-23

Last updated on: 2025-10-27

Assigner: ICS-CERT

Description

A relative path traversal (ZipSlip) vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an attacker who can tamper with a productivity project to execute arbitrary code on the machine where the project is opened.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-10-23
Last Modified
2025-10-27
Generated
2026-07-06
AI Q&A
2025-10-24
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 9 associated CPEs
Vendor Product Version / Range
automationdirect productivity_3000 p3-550e
automationdirect productivity_suite 4.5.0
automationdirect productivity_3000 p3-622
automationdirect productivity_1000 p1-550
automationdirect productivity_1000 p1-540
automationdirect productivity_2000 p2-622
automationdirect productivity_3000 p3-530
automationdirect productivity_2000 p2-550
automationdirect productivity_suite 4.4.1.19

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-23 The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a relative path traversal (ZipSlip) issue in Productivity Suite version 4.4.1.19. It allows an attacker who can modify a productivity project file to execute arbitrary code on the machine when the project is opened.

Impact Analysis

An attacker exploiting this vulnerability can run arbitrary code on your machine, potentially leading to unauthorized actions, data compromise, or system control.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-62498. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart