A critical zero-day vulnerability in BigAntSoft’s BigAnt Server (CVE-2025-0364) allows unauthenticated attackers to execute arbitrary code on affected systems through a chain of SaaS registration abuses and PHP file uploads. The flaw, discovered by VulnCheck researchers during an analysis of a misrated CVSS score for CVE-2024-54761, impacts all versions ≤5.6.06 of the Windows-based enterprise chat […]
The post BigAnt Server 0-day Vulnerability Let Attackers Execute Malicious Code Via File Uploads appeared first on Cyber Security News.
This article has been indexed from Cyber Security News