PT-2026-30046 · Unknown · Biztalk360
Published
2026-04-03
·
Updated
2026-04-03
·
CVE-2025-59710
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Biztalk360 versions prior to 11.5
Description
An access control issue allows any user to request the loading of a DLL file. During the loading process, a method is called, enabling an attacker to upload a malicious DLL to the server and achieve remote code execution.
Recommendations
Update Biztalk360 to version 11.5 or later.
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Biztalk360