CVE-2025-41035

Name of the Vulnerable Software and Affected Versions appRain CMF version 4.0.5

Description An authenticated Path Traversal vulnerability exists in the /apprain/common/download/ endpoint. This allows remote users to bypass SecurityManager restrictions and download arbitrary files if they possess sufficient permissions outside the configured document root. The vulnerability is triggered by manipulating the base64 encoded path following /download/.

Recommendations Ensure that access to the /apprain/common/download/ endpoint is restricted to authorized users only. Validate and sanitize the base64 encoded path input to prevent path traversal attempts.