PT-2025-39154 · Iron Mountain Archiving Services · Envision
Ceylan Bozoğullarindan
·
Published
2025-09-23
·
Updated
2025-09-23
·
CVE-2025-9588
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Iron Mountain Archiving Services Inc. EnVision versions prior to 250563
Description
The software contains an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') issue. This allows for Command Injection.
Recommendations
Update to version 250563 or later.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Envision