CVE-2025-65418
Received Received - Intake
Directory Traversal in docuFORM Managed Print Service Client

Publication date: 2026-05-11

Last updated on: 2026-05-11

Assigner: MITRE

Description
docuFORM Managed Print Service Client 11.11c is vulnerable to a directory traversal allowing attackers to read arbitrary files via crafted url.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-11
Last Modified
2026-05-11
Generated
2026-06-21
AI Q&A
2026-05-11
EPSS Evaluated
2026-06-19
NVD
CVE-2025-65418
EUVD
EUVD-2025-209777
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
docuform fsm_client 11.11c
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The vulnerability allows attackers to read arbitrary files, including potentially sensitive user-specific data, configuration files, and system files. This unauthorized access to sensitive information could lead to violations of data protection regulations such as GDPR and HIPAA, which require strict controls over personal and sensitive data to prevent unauthorized disclosure.

Therefore, exploitation of this directory traversal vulnerability may compromise compliance with standards and regulations that mandate confidentiality and integrity of sensitive information.

Executive Summary

CVE-2025-65418 is a directory traversal vulnerability in the docuForm FSM Client software version 11.11c. It occurs because user input is used to build file paths without proper validation or normalization. This flaw allows attackers to manipulate the file path to escape restricted directories and read arbitrary files on the system.

The vulnerability can be exploited remotely without authentication by sending specially crafted URLs.

Impact Analysis

Exploitation of this vulnerability can allow attackers to read sensitive files outside the intended directories. This includes configuration files, application source code, system files, and user-specific data.

Such unauthorized access can lead to information disclosure, which may facilitate further attacks or compromise of the affected system.

Detection Guidance

This vulnerability can be detected by monitoring for unauthenticated requests containing crafted URLs that attempt directory traversal patterns, such as sequences like "../" or encoded variants, targeting the docuFORM Managed Print Service Client 11.11c.

Network detection can involve inspecting HTTP requests for suspicious path traversal strings.

On the system, checking web server logs or application logs for unusual file access attempts outside the intended directories can help identify exploitation attempts.

  • Use tools like grep to search logs for directory traversal patterns, e.g.:
  • grep -E "\.\./|%2e%2e%2f" /path/to/access.log
  • Use curl or wget to test the vulnerability by sending crafted requests with directory traversal payloads, for example:
  • curl "http://target/docuform/path/../../../../etc/passwd"
Mitigation Strategies

The immediate mitigation step is to apply the vendor-provided patch or update released in November 2025 that fixes this directory traversal vulnerability in docuFORM FSM Client version 11.11c.

If patching is not immediately possible, restrict access to the vulnerable service by network controls such as firewalls or access control lists to limit exposure.

Additionally, monitor logs for exploitation attempts and consider implementing web application firewall (WAF) rules to block directory traversal patterns in URLs.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-65418. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart